e6ceb5f48d2d3abaf10403fd901a4d65594e8df759519175a4247ef1f1592b98 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e6ceb5f48d2d3abaf10403fd901a4d65594e8df759519175a4247ef1f1592b98
Size

45KB
Sample

240306-cqldlagd3z
MD5

96e4b9e91b6a68aa83638708bb388dae
SHA1

566930ac3865fa8a1c3ed10fa39d751b1abb829a
SHA256

e6ceb5f48d2d3abaf10403fd901a4d65594e8df759519175a4247ef1f1592b98
SHA512

225988a96ef0af6287c77ff63ca26e3270bc3c0a22185d95b1d3e480a15fda20d74f9e89fdc9265d8d19a8f9f4140940960dd3b267725c87ab94e162893bae22
SSDEEP

768:fdaUo76nzI4AX9GZgd+cSl/+lcxs+YsoYhT/Ey/1H5:k0zIWgd/0/+lKus/T/E4

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  e6ceb5f48d2d3abaf10403fd901a4d65594e8df759519175a4247ef1f1592b98
- Size
  
  45KB
- MD5
  
  96e4b9e91b6a68aa83638708bb388dae
- SHA1
  
  566930ac3865fa8a1c3ed10fa39d751b1abb829a
- SHA256
  
  e6ceb5f48d2d3abaf10403fd901a4d65594e8df759519175a4247ef1f1592b98
- SHA512
  
  225988a96ef0af6287c77ff63ca26e3270bc3c0a22185d95b1d3e480a15fda20d74f9e89fdc9265d8d19a8f9f4140940960dd3b267725c87ab94e162893bae22
- SSDEEP
  
  768:fdaUo76nzI4AX9GZgd+cSl/+lcxs+YsoYhT/Ey/1H5:k0zIWgd/0/+lKus/T/E4
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2