e42438c3b64416d741960b954fd927aea94ca1df6fdf2c8b311a882867752161 | Triage

Sharing

General

Target

e42438c3b64416d741960b954fd927aea94ca1df6fdf2c8b311a882867752161
Size

78KB
Sample

240824-f1sr7swhqm
MD5

7da94d0948ac478bbd64f8071f6030fd
SHA1

4ef488574fedcaa256a341f8123cc69fd0e1f218
SHA256

e42438c3b64416d741960b954fd927aea94ca1df6fdf2c8b311a882867752161
SHA512

a5c30c1b43c9517128a0a3c4f542244dfb836c2fb2a22771947382becc4586b5a05d7aa0873b6a2f3a6836db043c7448950a053340bf7ad4cc5681dfbee1cab7
SSDEEP

1536:9w3HGvfrF5GdjoEFgzF/066666666666666/666666Qn6666661sAFWpiVeN+zLH:y3kfrOyEF6/066666666666666/6666O

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  e42438c3b64416d741960b954fd927aea94ca1df6fdf2c8b311a882867752161
- Size
  
  78KB
- MD5
  
  7da94d0948ac478bbd64f8071f6030fd
- SHA1
  
  4ef488574fedcaa256a341f8123cc69fd0e1f218
- SHA256
  
  e42438c3b64416d741960b954fd927aea94ca1df6fdf2c8b311a882867752161
- SHA512
  
  a5c30c1b43c9517128a0a3c4f542244dfb836c2fb2a22771947382becc4586b5a05d7aa0873b6a2f3a6836db043c7448950a053340bf7ad4cc5681dfbee1cab7
- SSDEEP
  
  1536:9w3HGvfrF5GdjoEFgzF/066666666666666/666666Qn6666661sAFWpiVeN+zLH:y3kfrOyEF6/066666666666666/6666O
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence