e91b533c91e431c444887cd65dbdc4c9a574dd9fc9526004b0a622514b9d972d | Triage

Sharing

General

Target

e91b533c91e431c444887cd65dbdc4c9a574dd9fc9526004b0a622514b9d972d
Size

443KB
Sample

240701-epq9kawblg
MD5

59abbd9efd427646784aa5aca3bf4898
SHA1

4e4ca9d5f59cc5d7fb109783090c0445e08d6011
SHA256

e91b533c91e431c444887cd65dbdc4c9a574dd9fc9526004b0a622514b9d972d
SHA512

ef2ed4107a877dc5b5964b82cb3888d435cf2316744cf6a660074cf7a954f6a6f6d2ea1ec4cab5ad02788b28b983c3a856599ba8ea273646d047fb4a834c756d
SSDEEP

6144:Pg+axc4K4m7zeXmRL13n4GAI13n4GAvs0PEpNF0pNO021fv13n4GA3uKjwszeXmP:2x+p1J1HJ1Uj+HiPj

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  e91b533c91e431c444887cd65dbdc4c9a574dd9fc9526004b0a622514b9d972d
- Size
  
  443KB
- MD5
  
  59abbd9efd427646784aa5aca3bf4898
- SHA1
  
  4e4ca9d5f59cc5d7fb109783090c0445e08d6011
- SHA256
  
  e91b533c91e431c444887cd65dbdc4c9a574dd9fc9526004b0a622514b9d972d
- SHA512
  
  ef2ed4107a877dc5b5964b82cb3888d435cf2316744cf6a660074cf7a954f6a6f6d2ea1ec4cab5ad02788b28b983c3a856599ba8ea273646d047fb4a834c756d
- SSDEEP
  
  6144:Pg+axc4K4m7zeXmRL13n4GAI13n4GAvs0PEpNF0pNO021fv13n4GA3uKjwszeXmP:2x+p1J1HJ1Uj+HiPj
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2