13ae2241fa2a83d99f2304b1a4f7982f29e2f923d75b0368f66eda52eda71e3d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

13ae2241fa2a83d99f2304b1a4f7982f29e2f923d75b0368f66eda52eda71e3d
Size

141KB
Sample

240309-zryrmsaf6x
MD5

6ee36f182bbfa835a9be48f2c4f667bd
SHA1

b82ce29f2877fb196e5ab658036b49f49677dbec
SHA256

13ae2241fa2a83d99f2304b1a4f7982f29e2f923d75b0368f66eda52eda71e3d
SHA512

a95a0a0829697333da2822fd8089a3563d2ab11fb586b3cb220fb2304884ed9a91f640041d94547539df9ef7aef087d78c2c6e79d0c8bbcef4895a144fccfb85
SSDEEP

3072:k2C3CT7/kA+QlTJ/LebR/lbQDsC6cbS2LXe9QapqYy4hcAxyBwn:t0CT7/kY3LCWoHcbLOZLmAxJn

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  13ae2241fa2a83d99f2304b1a4f7982f29e2f923d75b0368f66eda52eda71e3d
- Size
  
  141KB
- MD5
  
  6ee36f182bbfa835a9be48f2c4f667bd
- SHA1
  
  b82ce29f2877fb196e5ab658036b49f49677dbec
- SHA256
  
  13ae2241fa2a83d99f2304b1a4f7982f29e2f923d75b0368f66eda52eda71e3d
- SHA512
  
  a95a0a0829697333da2822fd8089a3563d2ab11fb586b3cb220fb2304884ed9a91f640041d94547539df9ef7aef087d78c2c6e79d0c8bbcef4895a144fccfb85
- SSDEEP
  
  3072:k2C3CT7/kA+QlTJ/LebR/lbQDsC6cbS2LXe9QapqYy4hcAxyBwn:t0CT7/kY3LCWoHcbLOZLmAxJn
Score

8^/10

persistence
- Modifies AppInit DLL entries
  persistence
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2