2e0ae4108ee945bf5aa88a3acaebc26ccee03d62b2b90a559cee3ae4837f4277 | Triage

Sharing

General

Target

2e0ae4108ee945bf5aa88a3acaebc26ccee03d62b2b90a559cee3ae4837f4277
Size

463KB
Sample

240628-yn32hstcnk
MD5

2df9fcbbc6acbea3c351faece736d0c6
SHA1

f43636c800618bfd4b9241b380d1331fbabf7309
SHA256

2e0ae4108ee945bf5aa88a3acaebc26ccee03d62b2b90a559cee3ae4837f4277
SHA512

b911488a098a93fee2704aebfa866df9286bb0d549be76f4396e27e0a625b5498e0c560735b9f212194fce3a9eb1c0926f055afb11709feee1983707027c5e85
SSDEEP

12288:a3lc87eqqV5e+wBV6O+WiLV2vpSgL4/IfTZfNqm:a3SqqHeVBx1F4IfRIm

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  2e0ae4108ee945bf5aa88a3acaebc26ccee03d62b2b90a559cee3ae4837f4277
- Size
  
  463KB
- MD5
  
  2df9fcbbc6acbea3c351faece736d0c6
- SHA1
  
  f43636c800618bfd4b9241b380d1331fbabf7309
- SHA256
  
  2e0ae4108ee945bf5aa88a3acaebc26ccee03d62b2b90a559cee3ae4837f4277
- SHA512
  
  b911488a098a93fee2704aebfa866df9286bb0d549be76f4396e27e0a625b5498e0c560735b9f212194fce3a9eb1c0926f055afb11709feee1983707027c5e85
- SSDEEP
  
  12288:a3lc87eqqV5e+wBV6O+WiLV2vpSgL4/IfTZfNqm:a3SqqHeVBx1F4IfRIm
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2