e231aa64f8993c3104ee0c7ea9b0bc0a1f234a37b3f4ffc33f32d26b6b125464 | Triage

Sharing

General

Target

e231aa64f8993c3104ee0c7ea9b0bc0a1f234a37b3f4ffc33f32d26b6b125464
Size

161KB
Sample

240314-afzr5ade8t
MD5

1d910a3111375e3859d29c57b619929a
SHA1

7ab5966a9ce010b463ef978bc8811f38bf8bcda9
SHA256

e231aa64f8993c3104ee0c7ea9b0bc0a1f234a37b3f4ffc33f32d26b6b125464
SHA512

5f90bd803bbb6d9b3797abee17afbf84d9ec97f150233c69e08e203e292eda134e20288fec5ada0774c19e99a1d07167bfeead9b3cf52fc66a7752f8966330a8
SSDEEP

3072:JjOrlrDgbToiUYuIARcYH1t+jw7kjVwtCJXeex7rrIRZK8K8/kvV:lOrlrDgbT9TAlHf00kjVwtmeetrIyRV

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  e231aa64f8993c3104ee0c7ea9b0bc0a1f234a37b3f4ffc33f32d26b6b125464
- Size
  
  161KB
- MD5
  
  1d910a3111375e3859d29c57b619929a
- SHA1
  
  7ab5966a9ce010b463ef978bc8811f38bf8bcda9
- SHA256
  
  e231aa64f8993c3104ee0c7ea9b0bc0a1f234a37b3f4ffc33f32d26b6b125464
- SHA512
  
  5f90bd803bbb6d9b3797abee17afbf84d9ec97f150233c69e08e203e292eda134e20288fec5ada0774c19e99a1d07167bfeead9b3cf52fc66a7752f8966330a8
- SSDEEP
  
  3072:JjOrlrDgbToiUYuIARcYH1t+jw7kjVwtCJXeex7rrIRZK8K8/kvV:lOrlrDgbT9TAlHf00kjVwtmeetrIyRV
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2