ea6bf1c95f48dde66f7359efbd7fdfcc5dd0ad684df49334d616f04cbe657349 | Triage

Sharing

General

Target

ea6bf1c95f48dde66f7359efbd7fdfcc5dd0ad684df49334d616f04cbe657349
Size

1.3MB
Sample

240624-esls9azgqp
MD5

2fcbbd1c45a834004800f7487dca2064
SHA1

9efb9fec7e1ae992290171808e482abee7e950a5
SHA256

ea6bf1c95f48dde66f7359efbd7fdfcc5dd0ad684df49334d616f04cbe657349
SHA512

38332b346cd3bf7a9d174d920625460256cd3c2b25dc166bf2f57d2f1134eab4c60ae1f13ee563fcae64c7ef93f3f2da3cac469750d3b4d898bffc68e6a72e86
SSDEEP

24576:Svr4B9f01ZmQvrb91v92W9C05wkEPSOdKkrzEoxrC9toC9Dq9onk8:SkB9f0VP91v92W805IPSOdKgzEoxrlQ3

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  ea6bf1c95f48dde66f7359efbd7fdfcc5dd0ad684df49334d616f04cbe657349
- Size
  
  1.3MB
- MD5
  
  2fcbbd1c45a834004800f7487dca2064
- SHA1
  
  9efb9fec7e1ae992290171808e482abee7e950a5
- SHA256
  
  ea6bf1c95f48dde66f7359efbd7fdfcc5dd0ad684df49334d616f04cbe657349
- SHA512
  
  38332b346cd3bf7a9d174d920625460256cd3c2b25dc166bf2f57d2f1134eab4c60ae1f13ee563fcae64c7ef93f3f2da3cac469750d3b4d898bffc68e6a72e86
- SSDEEP
  
  24576:Svr4B9f01ZmQvrb91v92W9C05wkEPSOdKkrzEoxrC9toC9Dq9onk8:SkB9f0VP91v92W805IPSOdKgzEoxrlQ3
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2