102e13f051d15acb1ff099d51e0045d583011c22c6785058858059a7afd7be35 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

102e13f051d15acb1ff099d51e0045d583011c22c6785058858059a7afd7be35
Size

64KB
Sample

240701-xexmpsxdjj
MD5

e87a28d21b0564ff843594cfa4ff73da
SHA1

11570aa0c2ac29a039b0c1762751cdff360f4b1f
SHA256

102e13f051d15acb1ff099d51e0045d583011c22c6785058858059a7afd7be35
SHA512

9ac69c93df9a2ce0ecec7abd7366ad3c95abd906e8adaeaff7a33990d01fe4bbaf2d33505f34b1a108eb3cca10cbc29ce3791ffe7ada6b0dda37bb3c32222544
SSDEEP

1536:efMHdRIUjr34n3/XSnakd94CUXruCHcpzt/Idn:DRXy/XSbd9tpFwn

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  102e13f051d15acb1ff099d51e0045d583011c22c6785058858059a7afd7be35
- Size
  
  64KB
- MD5
  
  e87a28d21b0564ff843594cfa4ff73da
- SHA1
  
  11570aa0c2ac29a039b0c1762751cdff360f4b1f
- SHA256
  
  102e13f051d15acb1ff099d51e0045d583011c22c6785058858059a7afd7be35
- SHA512
  
  9ac69c93df9a2ce0ecec7abd7366ad3c95abd906e8adaeaff7a33990d01fe4bbaf2d33505f34b1a108eb3cca10cbc29ce3791ffe7ada6b0dda37bb3c32222544
- SSDEEP
  
  1536:efMHdRIUjr34n3/XSnakd94CUXruCHcpzt/Idn:DRXy/XSbd9tpFwn
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2