e468197214441e1317b7f792064ebea12a0b7dafea145c827a4565ee0aa7b4a7 | Triage

Sharing

General

Target

e468197214441e1317b7f792064ebea12a0b7dafea145c827a4565ee0aa7b4a7
Size

150KB
Sample

240405-ccskrahh29
MD5

18cb91f5673a191fe542cdfd294db83f
SHA1

851a6b9b682c64da979ab9cbdcc287e900298d73
SHA256

e468197214441e1317b7f792064ebea12a0b7dafea145c827a4565ee0aa7b4a7
SHA512

1e5120cc499509f743a8f195f8cbb55857c26dc17321103be16e9b1bed53d594851ae15d08f709ecd8061feeefff1cabd2b9d54a45d06ff7a91f1d0556868d4e
SSDEEP

3072:h/BH9p/3K+AEkzgXrGqJM4qd3bGjhkqsXbK:hR9pTAEkz6rGq4Bbq22

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  e468197214441e1317b7f792064ebea12a0b7dafea145c827a4565ee0aa7b4a7
- Size
  
  150KB
- MD5
  
  18cb91f5673a191fe542cdfd294db83f
- SHA1
  
  851a6b9b682c64da979ab9cbdcc287e900298d73
- SHA256
  
  e468197214441e1317b7f792064ebea12a0b7dafea145c827a4565ee0aa7b4a7
- SHA512
  
  1e5120cc499509f743a8f195f8cbb55857c26dc17321103be16e9b1bed53d594851ae15d08f709ecd8061feeefff1cabd2b9d54a45d06ff7a91f1d0556868d4e
- SSDEEP
  
  3072:h/BH9p/3K+AEkzgXrGqJM4qd3bGjhkqsXbK:hR9pTAEkz6rGq4Bbq22
Score

8^/10

persistence
- Modifies AppInit DLL entries
  persistence
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2