e665189e80413b3699bb3ec112c9cba0178dcb3f1b96e1bf8b9e631ea395f707 | Triage

Sharing

General

Target

e665189e80413b3699bb3ec112c9cba0178dcb3f1b96e1bf8b9e631ea395f707
Size

128KB
Sample

240901-e1fbfa1fkr
MD5

eeffd22aef38e3d421a88585e54c2443
SHA1

55c0d44cd8bead8e334e4b52da3350c8c42fe376
SHA256

e665189e80413b3699bb3ec112c9cba0178dcb3f1b96e1bf8b9e631ea395f707
SHA512

ccde6e21d6cd0085854bb9af86e572e3937a03dae1e4c1770c5c20d0d42dbe7af535e2e36d850b875ef0554f931969908a3e3ed335d796128704dcb6ede68a0f
SSDEEP

3072:1fkoqM+oIyoLOhezdH13+EE+RaZ6r+GDZnr:1pqMrjo8ezd5IF6rfBr

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  e665189e80413b3699bb3ec112c9cba0178dcb3f1b96e1bf8b9e631ea395f707
- Size
  
  128KB
- MD5
  
  eeffd22aef38e3d421a88585e54c2443
- SHA1
  
  55c0d44cd8bead8e334e4b52da3350c8c42fe376
- SHA256
  
  e665189e80413b3699bb3ec112c9cba0178dcb3f1b96e1bf8b9e631ea395f707
- SHA512
  
  ccde6e21d6cd0085854bb9af86e572e3937a03dae1e4c1770c5c20d0d42dbe7af535e2e36d850b875ef0554f931969908a3e3ed335d796128704dcb6ede68a0f
- SSDEEP
  
  3072:1fkoqM+oIyoLOhezdH13+EE+RaZ6r+GDZnr:1pqMrjo8ezd5IF6rfBr
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence