ea1577b6406765f0ccc2ff73ea8a9bf66f60c94d25742d34e1abe5b5026a0aed | Triage

Sharing

General

Target

c6383a1fba4fed6b3faa0b24d85a93ec
Size

320KB
Sample

240313-svrdeage5x
MD5

c6383a1fba4fed6b3faa0b24d85a93ec
SHA1

15fab436252475124d2d2ff1eeb388d3bc46e586
SHA256

ea1577b6406765f0ccc2ff73ea8a9bf66f60c94d25742d34e1abe5b5026a0aed
SHA512

058dfc796c5536961dc4d5eaf6aada32fd7edfa276582ecfdddf2c56db8d66a06a668bead632c3beffb0f1a69ac24680e1486cc71cd9e4be0d559cd40327f4f2
SSDEEP

6144:59LL6KQfJ01opmXAZp5BZjbnTOxXZ0mUmThjeHdBAGsF:nL6KQhKXsBZjjKJ0mUkhjsKG

Score

8^/10

evasion persistence

Malware Config

Targets

- Target
  
  c6383a1fba4fed6b3faa0b24d85a93ec
- Size
  
  320KB
- MD5
  
  c6383a1fba4fed6b3faa0b24d85a93ec
- SHA1
  
  15fab436252475124d2d2ff1eeb388d3bc46e586
- SHA256
  
  ea1577b6406765f0ccc2ff73ea8a9bf66f60c94d25742d34e1abe5b5026a0aed
- SHA512
  
  058dfc796c5536961dc4d5eaf6aada32fd7edfa276582ecfdddf2c56db8d66a06a668bead632c3beffb0f1a69ac24680e1486cc71cd9e4be0d559cd40327f4f2
- SSDEEP
  
  6144:59LL6KQfJ01opmXAZp5BZjbnTOxXZ0mUmThjeHdBAGsF:nL6KQhKXsBZjjKJ0mUkhjsKG
Score

8^/10

evasion persistence
- Disables taskbar notifications via registry modification
  evasion
- Modifies Installed Components in the registry
  persistence
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasionpersistence

behavioral2