e9b46bc46e9bec0632d4e5311e5f79329ddba93416479bd9a2b9d57f13e7c898 | Triage

Sharing

General

Target

e9b46bc46e9bec0632d4e5311e5f79329ddba93416479bd9a2b9d57f13e7c898.exe
Size

6.2MB
Sample

240810-camxgszhmr
MD5

dc074ad153c3355dcf323db77863b404
SHA1

ae3cd6238550adca3a2809a302d536dce90957fa
SHA256

e9b46bc46e9bec0632d4e5311e5f79329ddba93416479bd9a2b9d57f13e7c898
SHA512

b9b8820540576ae9b2bf372c5ec8c7a1ea8f6db4d4547668b77e67223a45cd608e998b1b74352419e6c2265e3c7552afb43ed7bff32b611c789960868474e195
SSDEEP

98304:ssRWMlKfFfdLLuA6quwceROHDNfjZa+SVlzVORsb98+L4Ow9fFrSfGk:ssRWMsWAe/eROH5A+S3Qs/Lm99rSe

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  e9b46bc46e9bec0632d4e5311e5f79329ddba93416479bd9a2b9d57f13e7c898.exe
- Size
  
  6.2MB
- MD5
  
  dc074ad153c3355dcf323db77863b404
- SHA1
  
  ae3cd6238550adca3a2809a302d536dce90957fa
- SHA256
  
  e9b46bc46e9bec0632d4e5311e5f79329ddba93416479bd9a2b9d57f13e7c898
- SHA512
  
  b9b8820540576ae9b2bf372c5ec8c7a1ea8f6db4d4547668b77e67223a45cd608e998b1b74352419e6c2265e3c7552afb43ed7bff32b611c789960868474e195
- SSDEEP
  
  98304:ssRWMlKfFfdLLuA6quwceROHDNfjZa+SVlzVORsb98+L4Ow9fFrSfGk:ssRWMsWAe/eROH5A+S3Qs/Lm99rSe
Score

7^/10

discovery persistence
- Drops startup file
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Scheduled Task

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Scheduled Task/Job

Scheduled Task

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Scheduled Task/Job

Scheduled Task

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence