e5430a88003413c7ff6816e8f26814cd858761af4afeb0b4bab13b3b74a096ec | Triage

Sharing

General

Target

e5430a88003413c7ff6816e8f26814cd858761af4afeb0b4bab13b3b74a096ec
Size

669KB
Sample

240409-3yvv4saf75
MD5

d90d5cac1c1f652ae51141aa08090c57
SHA1

725f1885cb8b59ee31fb2dad1fffc8b66cfb6edd
SHA256

e5430a88003413c7ff6816e8f26814cd858761af4afeb0b4bab13b3b74a096ec
SHA512

b4515054acff43d15aae815270c5e9364fddbac06b2142495c0f71ee1133a565457475e1b16ea0d7ab9412b26c9b97f488781be2957452346654ff0cf33f3950
SSDEEP

12288:Y1r2IU7eVKhMpQnqr+cI3a72LXrY6x46UbR/qYglMi:YobichMpQnqrdX72LbY6x46uR/qYglMi

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  e5430a88003413c7ff6816e8f26814cd858761af4afeb0b4bab13b3b74a096ec
- Size
  
  669KB
- MD5
  
  d90d5cac1c1f652ae51141aa08090c57
- SHA1
  
  725f1885cb8b59ee31fb2dad1fffc8b66cfb6edd
- SHA256
  
  e5430a88003413c7ff6816e8f26814cd858761af4afeb0b4bab13b3b74a096ec
- SHA512
  
  b4515054acff43d15aae815270c5e9364fddbac06b2142495c0f71ee1133a565457475e1b16ea0d7ab9412b26c9b97f488781be2957452346654ff0cf33f3950
- SSDEEP
  
  12288:Y1r2IU7eVKhMpQnqr+cI3a72LXrY6x46UbR/qYglMi:YobichMpQnqrdX72LbY6x46uR/qYglMi
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2