e8170177a673f2c636846ad82fa6932c144562648c438b2f5c8ee13d406267db | Triage

Sharing

General

Target

e8170177a673f2c636846ad82fa6932c144562648c438b2f5c8ee13d406267db
Size

128KB
Sample

240315-atw86abh2w
MD5

d84d9d3cb05f063d2f5934400dcc074b
SHA1

d0c6da74973a46f1a1534eb7972d2b3e00452092
SHA256

e8170177a673f2c636846ad82fa6932c144562648c438b2f5c8ee13d406267db
SHA512

d31fef2713ca104911dc50d91082067e8322d679fea6ae5583a86ddd7f0154b2c499c4c42fff76e600494759dfc1f18f120b26f940a1a61b542c8c0d293a8564
SSDEEP

3072:9DZUnFHNKGbmKR8fIRQm2sEFxeDo5wkpHxG:tZUN+KafPVsEuzCA

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  e8170177a673f2c636846ad82fa6932c144562648c438b2f5c8ee13d406267db
- Size
  
  128KB
- MD5
  
  d84d9d3cb05f063d2f5934400dcc074b
- SHA1
  
  d0c6da74973a46f1a1534eb7972d2b3e00452092
- SHA256
  
  e8170177a673f2c636846ad82fa6932c144562648c438b2f5c8ee13d406267db
- SHA512
  
  d31fef2713ca104911dc50d91082067e8322d679fea6ae5583a86ddd7f0154b2c499c4c42fff76e600494759dfc1f18f120b26f940a1a61b542c8c0d293a8564
- SSDEEP
  
  3072:9DZUnFHNKGbmKR8fIRQm2sEFxeDo5wkpHxG:tZUN+KafPVsEuzCA
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2