ec627802b0c24a3bdc702a4c4bc0109ceb346a5db67a91a9ca4f4b2e72726951 | Triage

Sharing

General

Target

ec627802b0c24a3bdc702a4c4bc0109ceb346a5db67a91a9ca4f4b2e72726951
Size

422KB
Sample

240320-b9tcwadg73
MD5

0409344af203003e79ba7787467eec15
SHA1

3a44c0bcc2ec63c65fa3cce0e64ede308efb6a1b
SHA256

ec627802b0c24a3bdc702a4c4bc0109ceb346a5db67a91a9ca4f4b2e72726951
SHA512

72da2515e8a169df3bde8e1e165f92e77a5fc856c4f5991b431c67d799cab0cf508c343782807b53d59713155d18b882a849604a4d844a7c59c5439f27bf8eaa
SSDEEP

6144:rGDec+gljbabO6FSPnvZU1AF+6FSPnvZhDYsKKo6FSPnvZU1AF+6FSPnvZq:feGaXgA4XfczXgA4XA

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  ec627802b0c24a3bdc702a4c4bc0109ceb346a5db67a91a9ca4f4b2e72726951
- Size
  
  422KB
- MD5
  
  0409344af203003e79ba7787467eec15
- SHA1
  
  3a44c0bcc2ec63c65fa3cce0e64ede308efb6a1b
- SHA256
  
  ec627802b0c24a3bdc702a4c4bc0109ceb346a5db67a91a9ca4f4b2e72726951
- SHA512
  
  72da2515e8a169df3bde8e1e165f92e77a5fc856c4f5991b431c67d799cab0cf508c343782807b53d59713155d18b882a849604a4d844a7c59c5439f27bf8eaa
- SSDEEP
  
  6144:rGDec+gljbabO6FSPnvZU1AF+6FSPnvZhDYsKKo6FSPnvZU1AF+6FSPnvZq:feGaXgA4XfczXgA4XA
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2