e6695db1d37931b2b43f376d88e0c9d99c64dfdf5582eb131337c65854c143e5 | Triage

Sharing

General

Target

e6695db1d37931b2b43f376d88e0c9d99c64dfdf5582eb131337c65854c143e5
Size

276KB
Sample

240707-fh6lcathjn
MD5

2c1daf2fe51f25a9c3d87705fa3704ea
SHA1

6a9b1486aee6c10aa9c75a924966996f2564f6bf
SHA256

e6695db1d37931b2b43f376d88e0c9d99c64dfdf5582eb131337c65854c143e5
SHA512

e0a24bb97391b7b3205a9eebf9b140187072507e9656e63a395de341464995b585de5568a8192f5c7d8e86532f4e5d0a76560cef58ac70961bced29228f26394
SSDEEP

3072:RyjpS2f+0JBV7yb0nvHUWcDeS5pAgYIqGvJ6887lbyMGjXF1kqaholmtbCQVDrMP:MpS2HHVcDdZMGXF5ahdt3rM8d7TtLa

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  e6695db1d37931b2b43f376d88e0c9d99c64dfdf5582eb131337c65854c143e5
- Size
  
  276KB
- MD5
  
  2c1daf2fe51f25a9c3d87705fa3704ea
- SHA1
  
  6a9b1486aee6c10aa9c75a924966996f2564f6bf
- SHA256
  
  e6695db1d37931b2b43f376d88e0c9d99c64dfdf5582eb131337c65854c143e5
- SHA512
  
  e0a24bb97391b7b3205a9eebf9b140187072507e9656e63a395de341464995b585de5568a8192f5c7d8e86532f4e5d0a76560cef58ac70961bced29228f26394
- SSDEEP
  
  3072:RyjpS2f+0JBV7yb0nvHUWcDeS5pAgYIqGvJ6887lbyMGjXF1kqaholmtbCQVDrMP:MpS2HHVcDdZMGXF5ahdt3rM8d7TtLa
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2