e434ab8f221e27b2a9d8b900111a28211e59b4cd375b65337ec611f5143900af | Triage

Sharing

General

Target

e434ab8f221e27b2a9d8b900111a28211e59b4cd375b65337ec611f5143900af
Size

2.7MB
Sample

240512-fm1kwshg7t
MD5

9e5da2de72a46d7b3a3b52c87f9e2f58
SHA1

a6d0baaaeb79c59354e3b4f86a8fd8c0e02c5b99
SHA256

e434ab8f221e27b2a9d8b900111a28211e59b4cd375b65337ec611f5143900af
SHA512

b6c21a3c01753103d8d3eba3336c3fe56dc4289b8d6e7ac993ae8de024323b9163690bf1a78a6d7878b5a4a061fbc15e6ef1b5fd5ce5134d288f2035c2134048
SSDEEP

49152:+R0p8xHycIq+GI27nGroMPTJPer1c2HSjpjK3LBO9w4Sx:+R0pI/IQlUoMPdmpSpc4

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  e434ab8f221e27b2a9d8b900111a28211e59b4cd375b65337ec611f5143900af
- Size
  
  2.7MB
- MD5
  
  9e5da2de72a46d7b3a3b52c87f9e2f58
- SHA1
  
  a6d0baaaeb79c59354e3b4f86a8fd8c0e02c5b99
- SHA256
  
  e434ab8f221e27b2a9d8b900111a28211e59b4cd375b65337ec611f5143900af
- SHA512
  
  b6c21a3c01753103d8d3eba3336c3fe56dc4289b8d6e7ac993ae8de024323b9163690bf1a78a6d7878b5a4a061fbc15e6ef1b5fd5ce5134d288f2035c2134048
- SSDEEP
  
  49152:+R0p8xHycIq+GI27nGroMPTJPer1c2HSjpjK3LBO9w4Sx:+R0pI/IQlUoMPdmpSpc4
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2