1e58458a556788dc0d13aff7b927e38aa41bda2a53b916acdb042f52de85ca95 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ec6800d9ccefcbfa72adb9516b3a6c80N.exe
Size

592KB
Sample

240721-vafsaavhnd
MD5

ec6800d9ccefcbfa72adb9516b3a6c80
SHA1

baa7a4dec3f5e5442849dffb3c4ee30e38343533
SHA256

1e58458a556788dc0d13aff7b927e38aa41bda2a53b916acdb042f52de85ca95
SHA512

1bc4bed1d8f49eb88dc47621c21852e7a4d7a2c73014edb1426973e1bf402aa030b3aefa73d544d25582b17b16c667627e2073e77a9bb003f5e987ab96bf7f48
SSDEEP

12288:4jauDReWY/Kzdi20tewfpdZzDPUmd+O2M35nenwnCwD3DG:4DDDzdOfPP9+O2M35nenwCwDzG

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  ec6800d9ccefcbfa72adb9516b3a6c80N.exe
- Size
  
  592KB
- MD5
  
  ec6800d9ccefcbfa72adb9516b3a6c80
- SHA1
  
  baa7a4dec3f5e5442849dffb3c4ee30e38343533
- SHA256
  
  1e58458a556788dc0d13aff7b927e38aa41bda2a53b916acdb042f52de85ca95
- SHA512
  
  1bc4bed1d8f49eb88dc47621c21852e7a4d7a2c73014edb1426973e1bf402aa030b3aefa73d544d25582b17b16c667627e2073e77a9bb003f5e987ab96bf7f48
- SSDEEP
  
  12288:4jauDReWY/Kzdi20tewfpdZzDPUmd+O2M35nenwnCwD3DG:4DDDzdOfPP9+O2M35nenwCwDzG
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2