e4ec559a2de9160471bbcf9b466c5d262de928b9df96ffd7007cd9a8568113a2 | Triage

Sharing

General

Target

e4ec559a2de9160471bbcf9b466c5d262de928b9df96ffd7007cd9a8568113a2
Size

45KB
Sample

240807-erc5qathkc
MD5

b0a3a45502f89747ec5ab6e13d32131b
SHA1

f9785efffbfefccf5a267a3fc7d7f67bbd0f1ea1
SHA256

e4ec559a2de9160471bbcf9b466c5d262de928b9df96ffd7007cd9a8568113a2
SHA512

964f949a05dfb0281c033d90c28883f4ddd10ddd1d580bb348b4404416878d874b42ce481ef169c11d36370636f6af07aba808606912faa84b5c7e5b6281cfed
SSDEEP

768:g/wrsrbDtnyhUhVXVreIimPx+MZCIaqW++K8/FLTJmN4/1H5Dg:8GsxniUHX3iCEzI9R2VTsN+

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  e4ec559a2de9160471bbcf9b466c5d262de928b9df96ffd7007cd9a8568113a2
- Size
  
  45KB
- MD5
  
  b0a3a45502f89747ec5ab6e13d32131b
- SHA1
  
  f9785efffbfefccf5a267a3fc7d7f67bbd0f1ea1
- SHA256
  
  e4ec559a2de9160471bbcf9b466c5d262de928b9df96ffd7007cd9a8568113a2
- SHA512
  
  964f949a05dfb0281c033d90c28883f4ddd10ddd1d580bb348b4404416878d874b42ce481ef169c11d36370636f6af07aba808606912faa84b5c7e5b6281cfed
- SSDEEP
  
  768:g/wrsrbDtnyhUhVXVreIimPx+MZCIaqW++K8/FLTJmN4/1H5Dg:8GsxniUHX3iCEzI9R2VTsN+
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence