eec968fff40d7446cd4f62428fc2c8e3762ab0cf1590c3a7d1ce81fcc42d3e67 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

88a8f1a149cfa513cc14518d3416b2cc
Size

448KB
Sample

240409-ypr1msgf53
MD5

88a8f1a149cfa513cc14518d3416b2cc
SHA1

73eef9dad6150a5689147cab3b3d26f2b0be6856
SHA256

eec968fff40d7446cd4f62428fc2c8e3762ab0cf1590c3a7d1ce81fcc42d3e67
SHA512

8c265f30ead9852fdfe4334350dc0fd8e7f44b508bda93c8155ecf49bf7fee54e921b29d6239d41bd5888264182b432b89c5c6e71856d0d78728935baed069dc
SSDEEP

6144:aQO+UQOav6s21L7/s50z/Wa3/PNlP59ENQdgrb8X6SJqGaPonZh/nr0xuIKjyAHM:aFQK705kWM/9J6gqGBf/sAHZHbgdhgi

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  88a8f1a149cfa513cc14518d3416b2cc
- Size
  
  448KB
- MD5
  
  88a8f1a149cfa513cc14518d3416b2cc
- SHA1
  
  73eef9dad6150a5689147cab3b3d26f2b0be6856
- SHA256
  
  eec968fff40d7446cd4f62428fc2c8e3762ab0cf1590c3a7d1ce81fcc42d3e67
- SHA512
  
  8c265f30ead9852fdfe4334350dc0fd8e7f44b508bda93c8155ecf49bf7fee54e921b29d6239d41bd5888264182b432b89c5c6e71856d0d78728935baed069dc
- SSDEEP
  
  6144:aQO+UQOav6s21L7/s50z/Wa3/PNlP59ENQdgrb8X6SJqGaPonZh/nr0xuIKjyAHM:aFQK705kWM/9J6gqGBf/sAHZHbgdhgi
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2