e95ddbff41d083bc9e5fca32e83b8a4c5f401f4293a29e37aa89e8388d712002 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e95ddbff41d083bc9e5fca32e83b8a4c5f401f4293a29e37aa89e8388d712002
Size

788KB
Sample

240611-e7dfesverk
MD5

fc948b7872a54228a5c44841506ebadc
SHA1

716bc656d0becb3b0b1c4c0c196b2440cbfb4167
SHA256

e95ddbff41d083bc9e5fca32e83b8a4c5f401f4293a29e37aa89e8388d712002
SHA512

975f81398da84bf15ea53de37835d37b3c092044635ca83b5a846c4d35aad405bbe1b541c2ff613661a001fb1b20b7d97f9c38235712fc2b00f460a2f2f8d189
SSDEEP

6144:Pi05kH9OyU2uv5SRf/FWgFgtlgqIRAUW9kVYeVprU4wfhTv5xD2ZP0GVGdXcukT4:KrHGPv5SmptGDmUWuVZkxikdXcq

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  e95ddbff41d083bc9e5fca32e83b8a4c5f401f4293a29e37aa89e8388d712002
- Size
  
  788KB
- MD5
  
  fc948b7872a54228a5c44841506ebadc
- SHA1
  
  716bc656d0becb3b0b1c4c0c196b2440cbfb4167
- SHA256
  
  e95ddbff41d083bc9e5fca32e83b8a4c5f401f4293a29e37aa89e8388d712002
- SHA512
  
  975f81398da84bf15ea53de37835d37b3c092044635ca83b5a846c4d35aad405bbe1b541c2ff613661a001fb1b20b7d97f9c38235712fc2b00f460a2f2f8d189
- SSDEEP
  
  6144:Pi05kH9OyU2uv5SRf/FWgFgtlgqIRAUW9kVYeVprU4wfhTv5xD2ZP0GVGdXcukT4:KrHGPv5SmptGDmUWuVZkxikdXcq
Score

7^/10

persistence
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Scheduled Task/Job

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Scheduled Task/Job

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2