02e081adbd8cf8b9d98f6e89c637dfd0d8c8b67cf7a4fc8a0ce4c35f6cfd4289 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

02e081adbd8cf8b9d98f6e89c637dfd0d8c8b67cf7a4fc8a0ce4c35f6cfd4289
Size

74KB
Sample

240430-wt5fesee27
MD5

3fa7662f08ca91a565a92e5e2eb4be04
SHA1

a8c302a855ba066b0d1781d65ce480590752f3df
SHA256

02e081adbd8cf8b9d98f6e89c637dfd0d8c8b67cf7a4fc8a0ce4c35f6cfd4289
SHA512

88c197849fb3592482fde0ab1752ee843fed08b1734fc5f6c4df3414dadbb5ebbf2544dbec194c383901ed2c7c2dbde4ac95a6936373dc685a45afeeeaecb25b
SSDEEP

1536:IXCHAAsjs1oucrb92eKjQJyf8mcoKyhaIw2O4+JZj2:Obs1dc0Ff8Nof+Jx2

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  02e081adbd8cf8b9d98f6e89c637dfd0d8c8b67cf7a4fc8a0ce4c35f6cfd4289
- Size
  
  74KB
- MD5
  
  3fa7662f08ca91a565a92e5e2eb4be04
- SHA1
  
  a8c302a855ba066b0d1781d65ce480590752f3df
- SHA256
  
  02e081adbd8cf8b9d98f6e89c637dfd0d8c8b67cf7a4fc8a0ce4c35f6cfd4289
- SHA512
  
  88c197849fb3592482fde0ab1752ee843fed08b1734fc5f6c4df3414dadbb5ebbf2544dbec194c383901ed2c7c2dbde4ac95a6936373dc685a45afeeeaecb25b
- SSDEEP
  
  1536:IXCHAAsjs1oucrb92eKjQJyf8mcoKyhaIw2O4+JZj2:Obs1dc0Ff8Nof+Jx2
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2