ef5882785e74b2cba3503f1100de5abda829c9420a8da1c6688f88e1c6dc33a6 | Triage

Sharing

General

Target

ef5882785e74b2cba3503f1100de5abda829c9420a8da1c6688f88e1c6dc33a6
Size

75KB
Sample

240409-d9d93aha61
MD5

afca30a4cc62a98b2ac201af1934e4b2
SHA1

d0638cfd467debd5aa76f773e63af82f6d1bf6ba
SHA256

ef5882785e74b2cba3503f1100de5abda829c9420a8da1c6688f88e1c6dc33a6
SHA512

dc6bb41c06df4417bbb56b7d48ba29616e9be03576be9963c84a4f2d013f36ba504e7c5217bbad04f82fb0bab07fc3276508dadea28d4f360cc55b5cc1409842
SSDEEP

1536:nPtq0wAKWnDJZtZHHeLuvqquYXrL/YTf50SWcz61cgCe8uvQGYQzlV:M0fK8fZH+L7svwTfLWcz6ugCe8uvQa

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  ef5882785e74b2cba3503f1100de5abda829c9420a8da1c6688f88e1c6dc33a6
- Size
  
  75KB
- MD5
  
  afca30a4cc62a98b2ac201af1934e4b2
- SHA1
  
  d0638cfd467debd5aa76f773e63af82f6d1bf6ba
- SHA256
  
  ef5882785e74b2cba3503f1100de5abda829c9420a8da1c6688f88e1c6dc33a6
- SHA512
  
  dc6bb41c06df4417bbb56b7d48ba29616e9be03576be9963c84a4f2d013f36ba504e7c5217bbad04f82fb0bab07fc3276508dadea28d4f360cc55b5cc1409842
- SSDEEP
  
  1536:nPtq0wAKWnDJZtZHHeLuvqquYXrL/YTf50SWcz61cgCe8uvQGYQzlV:M0fK8fZH+L7svwTfLWcz6ugCe8uvQa
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2