e6a7226e550cfe3c8028d99ed412a253fb5e81691a888f59b6b20089fe72e2c0 | Triage

Sharing

General

Target

e6a7226e550cfe3c8028d99ed412a253fb5e81691a888f59b6b20089fe72e2c0
Size

240KB
Sample

240704-flhnpawajk
MD5

aa2e4ad1d10f75367e1fb6ad62170a78
SHA1

98c17d3d4c0ee3d5edfba3c5c26b25d7fdbc4489
SHA256

e6a7226e550cfe3c8028d99ed412a253fb5e81691a888f59b6b20089fe72e2c0
SHA512

70005086315810e4bbc07b5c77dda63a5001d9be8e87781a3b8e9db8c8c51d39e1c9a845fc97e73ac2261703418f7c9b8e5978ba34b77c691f285cd2290d542d
SSDEEP

6144:forHI+LfV4AOGyZ6YugQdjGG1wsKm6eBgdQbkoKTBEA:fozfq7GyXu1jGG1wsGeBgRTGA

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  e6a7226e550cfe3c8028d99ed412a253fb5e81691a888f59b6b20089fe72e2c0
- Size
  
  240KB
- MD5
  
  aa2e4ad1d10f75367e1fb6ad62170a78
- SHA1
  
  98c17d3d4c0ee3d5edfba3c5c26b25d7fdbc4489
- SHA256
  
  e6a7226e550cfe3c8028d99ed412a253fb5e81691a888f59b6b20089fe72e2c0
- SHA512
  
  70005086315810e4bbc07b5c77dda63a5001d9be8e87781a3b8e9db8c8c51d39e1c9a845fc97e73ac2261703418f7c9b8e5978ba34b77c691f285cd2290d542d
- SSDEEP
  
  6144:forHI+LfV4AOGyZ6YugQdjGG1wsKm6eBgdQbkoKTBEA:fozfq7GyXu1jGG1wsGeBgRTGA
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2