d7e2ea70b932d0914c6dffebf580b7ef965d0c0305b95fafd57d71669375c71f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d7e2ea70b932d0914c6dffebf580b7ef965d0c0305b95fafd57d71669375c71f
Size

153KB
Sample

240316-aqawrafc2t
MD5

bbda038417323fdf69c0d22a3945a612
SHA1

ecd721decf185db461f7f2aadf3897097b326c69
SHA256

d7e2ea70b932d0914c6dffebf580b7ef965d0c0305b95fafd57d71669375c71f
SHA512

bb896a8266d7b41b632dd08e50249b500a6294e012d06b9aa2b01bd361e0d3dc5731c7da6c88f1afd14b69ed021f1eb8b5308b29b24e2b2631afc3a9342bd6e3
SSDEEP

3072:ZHrEI6rvvMV0nE17B+TnFnW5/bi13lNvuCLeEPbUXHrJ61ej/:5wHMV0nE1l+LtuTS/aSUXLJZ

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  d7e2ea70b932d0914c6dffebf580b7ef965d0c0305b95fafd57d71669375c71f
- Size
  
  153KB
- MD5
  
  bbda038417323fdf69c0d22a3945a612
- SHA1
  
  ecd721decf185db461f7f2aadf3897097b326c69
- SHA256
  
  d7e2ea70b932d0914c6dffebf580b7ef965d0c0305b95fafd57d71669375c71f
- SHA512
  
  bb896a8266d7b41b632dd08e50249b500a6294e012d06b9aa2b01bd361e0d3dc5731c7da6c88f1afd14b69ed021f1eb8b5308b29b24e2b2631afc3a9342bd6e3
- SSDEEP
  
  3072:ZHrEI6rvvMV0nE17B+TnFnW5/bi13lNvuCLeEPbUXHrJ61ej/:5wHMV0nE1l+LtuTS/aSUXLJZ
Score

8^/10

persistence
- Modifies AppInit DLL entries
  persistence
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2