e09cc06d247fa327c100e31db6be221c16c67479d598dbce0e5280fe49b6959d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e09cc06d247fa327c100e31db6be221c16c67479d598dbce0e5280fe49b6959d
Size

101KB
Sample

240425-ey79fafb64
MD5

02b437055528776a9b361659a01a30ee
SHA1

2222cfc7d9a5ee2188ed7ab828dfe86137e75431
SHA256

e09cc06d247fa327c100e31db6be221c16c67479d598dbce0e5280fe49b6959d
SHA512

feb8d086e6bd0f301768449d3111eac43e384cc85f0d67af49d37e8217b9068b0f18cdeb9263a793b26151ab53078008c012b360e28f6bb238d8ccbe28760923
SSDEEP

3072:N7QUcqvOjqF866QtifSVe333/zrB3g3k8p4qI4/HQCC:iUcqvqrfXvPBZs/HNC

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  e09cc06d247fa327c100e31db6be221c16c67479d598dbce0e5280fe49b6959d
- Size
  
  101KB
- MD5
  
  02b437055528776a9b361659a01a30ee
- SHA1
  
  2222cfc7d9a5ee2188ed7ab828dfe86137e75431
- SHA256
  
  e09cc06d247fa327c100e31db6be221c16c67479d598dbce0e5280fe49b6959d
- SHA512
  
  feb8d086e6bd0f301768449d3111eac43e384cc85f0d67af49d37e8217b9068b0f18cdeb9263a793b26151ab53078008c012b360e28f6bb238d8ccbe28760923
- SSDEEP
  
  3072:N7QUcqvOjqF866QtifSVe333/zrB3g3k8p4qI4/HQCC:iUcqvqrfXvPBZs/HNC
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2