2e88618b805bdebdbfee52e1d92420feed798fcc0292620dad589d77a51c6fdf | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2e88618b805bdebdbfee52e1d92420feed798fcc0292620dad589d77a51c6fdf
Size

64KB
Sample

240306-xa3yxsgc8t
MD5

d418f280d857f7e40643971e9d2c1674
SHA1

f6f65d424fef8296c509e84dc7c46d2c4b569f40
SHA256

2e88618b805bdebdbfee52e1d92420feed798fcc0292620dad589d77a51c6fdf
SHA512

85ece8cf228fcb97c471f98f7f1bb0ed01ffdfef7acb7a76f00ecd7a08c08e7f6e79c80c349c6b65a64da52cf09e21c91d0b1047e13bd918d63948818df8d2a3
SSDEEP

1536:443+oKMQ3GtZYjvEZJafUw9wJhbRE5uV1iL+iALMH6:40kzGtZ4v4wKnFE5uV1iL+9Ma

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  2e88618b805bdebdbfee52e1d92420feed798fcc0292620dad589d77a51c6fdf
- Size
  
  64KB
- MD5
  
  d418f280d857f7e40643971e9d2c1674
- SHA1
  
  f6f65d424fef8296c509e84dc7c46d2c4b569f40
- SHA256
  
  2e88618b805bdebdbfee52e1d92420feed798fcc0292620dad589d77a51c6fdf
- SHA512
  
  85ece8cf228fcb97c471f98f7f1bb0ed01ffdfef7acb7a76f00ecd7a08c08e7f6e79c80c349c6b65a64da52cf09e21c91d0b1047e13bd918d63948818df8d2a3
- SSDEEP
  
  1536:443+oKMQ3GtZYjvEZJafUw9wJhbRE5uV1iL+iALMH6:40kzGtZ4v4wKnFE5uV1iL+9Ma
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2