7de6641b4973aba43cf4bbae3ce66e54620c3a44bdae7e8d2f3a03782498ae23 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e1ad47fd11cc436724bc14b36bbeba5c
Size

34KB
Sample

240327-prmdhafc7v
MD5

e1ad47fd11cc436724bc14b36bbeba5c
SHA1

76f82df0717916d7751fe445ff24b1c5f612905e
SHA256

7de6641b4973aba43cf4bbae3ce66e54620c3a44bdae7e8d2f3a03782498ae23
SHA512

d3fc5e7ec78a12c3d290278c9d47195b368f8123e0e0075295e0f5426aa8dcd55926321208d4061a0b582badef9cb834764789c65e30cdd08fd8b910747d9d7f
SSDEEP

768:87lDTSjNrRZqMD+vMjpNZ14ZA/LwvRUiPxEDE4OpvXj:8dSjNrRZOvMF1mUwvWgbVpPj

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  e1ad47fd11cc436724bc14b36bbeba5c
- Size
  
  34KB
- MD5
  
  e1ad47fd11cc436724bc14b36bbeba5c
- SHA1
  
  76f82df0717916d7751fe445ff24b1c5f612905e
- SHA256
  
  7de6641b4973aba43cf4bbae3ce66e54620c3a44bdae7e8d2f3a03782498ae23
- SHA512
  
  d3fc5e7ec78a12c3d290278c9d47195b368f8123e0e0075295e0f5426aa8dcd55926321208d4061a0b582badef9cb834764789c65e30cdd08fd8b910747d9d7f
- SSDEEP
  
  768:87lDTSjNrRZqMD+vMjpNZ14ZA/LwvRUiPxEDE4OpvXj:8dSjNrRZOvMF1mUwvWgbVpPj
Score

7^/10

persistence
- ACProtect 1.3x - 1.4x DLL software
  Detects file using ACProtect software.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2