a2d53a525fa5c5c77a38ba9c7a1a759267e313aca806d064570fc068e913cf45 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e23aafbe57a58f302b4f6ee19ce5fcce
Size

19KB
Sample

240327-ys8skaah78
MD5

e23aafbe57a58f302b4f6ee19ce5fcce
SHA1

b33d45b7543cd81de3d8c06b9219ec7605710551
SHA256

a2d53a525fa5c5c77a38ba9c7a1a759267e313aca806d064570fc068e913cf45
SHA512

e83d08a654e98e33c1b1f5384e2ae401e5261823e3fbb440f7ecdd7b29687a2ed10bcaddb26b669c8a87055257f6d2d9d4215ebfaafd0c88322cbe4b1ce4ebd8
SSDEEP

384:AQEJH3vLovF12pBFD5IU4P1SQATxELBEzR:IBzij24Szt0

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  e23aafbe57a58f302b4f6ee19ce5fcce
- Size
  
  19KB
- MD5
  
  e23aafbe57a58f302b4f6ee19ce5fcce
- SHA1
  
  b33d45b7543cd81de3d8c06b9219ec7605710551
- SHA256
  
  a2d53a525fa5c5c77a38ba9c7a1a759267e313aca806d064570fc068e913cf45
- SHA512
  
  e83d08a654e98e33c1b1f5384e2ae401e5261823e3fbb440f7ecdd7b29687a2ed10bcaddb26b669c8a87055257f6d2d9d4215ebfaafd0c88322cbe4b1ce4ebd8
- SSDEEP
  
  384:AQEJH3vLovF12pBFD5IU4P1SQATxELBEzR:IBzij24Szt0
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2