2e958adc1b80e00f1eb3b7954552e37ab5711b6fe1729e23b0acfae89785d3a8 | Triage

Sharing

General

Target

2e958adc1b80e00f1eb3b7954552e37ab5711b6fe1729e23b0acfae89785d3a8
Size

117KB
Sample

240424-rtf1lsbe47
MD5

64470f61069b5688619e88cb7e723fe9
SHA1

3a9e73bb90dd98845a2f22d573bc8793e7b45ee2
SHA256

2e958adc1b80e00f1eb3b7954552e37ab5711b6fe1729e23b0acfae89785d3a8
SHA512

a1ac512bce5530e47ab6f46ce134966ebea3cd7621e89056297d932b8fac8d27ad7bb2f2618083c6446fec2acb2fe1c592278bc7f4593776d1f49f79ca192979
SSDEEP

1536:p02X6GNFoA5htEP89wHKY0zLYWPdfOuAABH5XFFfUN1Avhw6JCM:pz6qFlIP8tBv5AEXFFfUrQlM

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  2e958adc1b80e00f1eb3b7954552e37ab5711b6fe1729e23b0acfae89785d3a8
- Size
  
  117KB
- MD5
  
  64470f61069b5688619e88cb7e723fe9
- SHA1
  
  3a9e73bb90dd98845a2f22d573bc8793e7b45ee2
- SHA256
  
  2e958adc1b80e00f1eb3b7954552e37ab5711b6fe1729e23b0acfae89785d3a8
- SHA512
  
  a1ac512bce5530e47ab6f46ce134966ebea3cd7621e89056297d932b8fac8d27ad7bb2f2618083c6446fec2acb2fe1c592278bc7f4593776d1f49f79ca192979
- SSDEEP
  
  1536:p02X6GNFoA5htEP89wHKY0zLYWPdfOuAABH5XFFfUN1Avhw6JCM:pz6qFlIP8tBv5AEXFFfUrQlM
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2