e8d959634e2ac73772fed93e3d9f00638bb53027f181461ddca2caee02d8dac8 | Triage

Sharing

General

Target

e8d959634e2ac73772fed93e3d9f00638bb53027f181461ddca2caee02d8dac8
Size

608KB
Sample

240614-f59xaazhqk
MD5

2ca3b863d77e3605d5a305efcfc644d2
SHA1

222a90580a638de32acd8afe7393facc4aab8379
SHA256

e8d959634e2ac73772fed93e3d9f00638bb53027f181461ddca2caee02d8dac8
SHA512

5a1b76c38b4794ebff5c1cc78bee6172665b8f80d0f019c7ff70a55748b03bf7d923bad76b9f90caefecb1cf572ec7e79fa338879324bd4497d14846c60492ad
SSDEEP

12288:L/vcHoW02KkY660fIaDZkY660f8jTK/XhdAwlt01t:bvcHoWlKgsaDZgQjGkwlg

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  e8d959634e2ac73772fed93e3d9f00638bb53027f181461ddca2caee02d8dac8
- Size
  
  608KB
- MD5
  
  2ca3b863d77e3605d5a305efcfc644d2
- SHA1
  
  222a90580a638de32acd8afe7393facc4aab8379
- SHA256
  
  e8d959634e2ac73772fed93e3d9f00638bb53027f181461ddca2caee02d8dac8
- SHA512
  
  5a1b76c38b4794ebff5c1cc78bee6172665b8f80d0f019c7ff70a55748b03bf7d923bad76b9f90caefecb1cf572ec7e79fa338879324bd4497d14846c60492ad
- SSDEEP
  
  12288:L/vcHoW02KkY660fIaDZkY660f8jTK/XhdAwlt01t:bvcHoWlKgsaDZgQjGkwlg
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2