ea4e2d6c1f40313ffbae6e7bfbd02ffa76a02beef3862fd0706d573727b6a287 | Triage

Sharing

General

Target

ea4e2d6c1f40313ffbae6e7bfbd02ffa76a02beef3862fd0706d573727b6a287
Size

315KB
Sample

240504-e6v9vagc25
MD5

f0aa2f2bcb13af9aaacda835896b8df8
SHA1

638a34aecc5ff352d8b9c020fe8bb0074e3769e5
SHA256

ea4e2d6c1f40313ffbae6e7bfbd02ffa76a02beef3862fd0706d573727b6a287
SHA512

25d881e74be1a23c9e268b683710e92ba102c45fe9bd94512d59280e186e294a6be6034b8ef41f40449f6a176c111c28b71b1c9121947118ea87e6937ffac468
SSDEEP

3072:tEayFT/e9UVJnbatq749+f4auvZ7LC4ZR4mqmnKBstqBiPXPAPePdfVQ:zC/e9oatqI+stesMmG

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  ea4e2d6c1f40313ffbae6e7bfbd02ffa76a02beef3862fd0706d573727b6a287
- Size
  
  315KB
- MD5
  
  f0aa2f2bcb13af9aaacda835896b8df8
- SHA1
  
  638a34aecc5ff352d8b9c020fe8bb0074e3769e5
- SHA256
  
  ea4e2d6c1f40313ffbae6e7bfbd02ffa76a02beef3862fd0706d573727b6a287
- SHA512
  
  25d881e74be1a23c9e268b683710e92ba102c45fe9bd94512d59280e186e294a6be6034b8ef41f40449f6a176c111c28b71b1c9121947118ea87e6937ffac468
- SSDEEP
  
  3072:tEayFT/e9UVJnbatq749+f4auvZ7LC4ZR4mqmnKBstqBiPXPAPePdfVQ:zC/e9oatqI+stesMmG
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2