e5a1d2807cf1106e6d6458a01dad2de66101019f59e37e49a37edfb3763029c8 | Triage

Sharing

General

Target

e5a1d2807cf1106e6d6458a01dad2de66101019f59e37e49a37edfb3763029c8
Size

1.2MB
Sample

240602-eg8tmsab41
MD5

347ce965390a064923fc9d7401fc2c5b
SHA1

bcd1e2cd4138f63f198dd013560d4ece7734774f
SHA256

e5a1d2807cf1106e6d6458a01dad2de66101019f59e37e49a37edfb3763029c8
SHA512

b1e66cd15132730484675c5ffc8550736d74283506624369da90d705483c616bf87f6b8398e2d4c7529a4f9b9bf423c0db45df11dc59ff21542b8ab662284f0b
SSDEEP

12288:YMgGvbbUSHCXwpnsKvNA+XTvZHWuEo3oW6:YHGvbQ0psKv2EvZHp3oW6

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  e5a1d2807cf1106e6d6458a01dad2de66101019f59e37e49a37edfb3763029c8
- Size
  
  1.2MB
- MD5
  
  347ce965390a064923fc9d7401fc2c5b
- SHA1
  
  bcd1e2cd4138f63f198dd013560d4ece7734774f
- SHA256
  
  e5a1d2807cf1106e6d6458a01dad2de66101019f59e37e49a37edfb3763029c8
- SHA512
  
  b1e66cd15132730484675c5ffc8550736d74283506624369da90d705483c616bf87f6b8398e2d4c7529a4f9b9bf423c0db45df11dc59ff21542b8ab662284f0b
- SSDEEP
  
  12288:YMgGvbbUSHCXwpnsKvNA+XTvZHWuEo3oW6:YHGvbQ0psKv2EvZHp3oW6
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2