e5de9717dc53dcdd20b31dd6064765664d991322b0a45936d7cd2bb4f3edcf99 | Triage

Sharing

General

Target

e5de9717dc53dcdd20b31dd6064765664d991322b0a45936d7cd2bb4f3edcf99
Size

64KB
Sample

240909-eg1g9szhpp
MD5

e877f6a0b2dc48d977e46f4865833e6d
SHA1

5278069eeb72dac25aa8aa6be940eeb992678e00
SHA256

e5de9717dc53dcdd20b31dd6064765664d991322b0a45936d7cd2bb4f3edcf99
SHA512

2f8b3f3c677be51de5a111762e94a29f2d58893429a42180e630ca6018eb1fdaee72dc2a725019cc02a42f1490289977bbb0f17b54c529570cfdcaeea23f0d45
SSDEEP

768:3zAABkD3tjVVc3mW2E/CaoPAKqqTewNxiXJJXJJ1JJXJJXJJ2JJ2JJ2JJKoJJJJc:jBw35IgaoYKdpyBxgGJ2LfsBMu/H1

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  e5de9717dc53dcdd20b31dd6064765664d991322b0a45936d7cd2bb4f3edcf99
- Size
  
  64KB
- MD5
  
  e877f6a0b2dc48d977e46f4865833e6d
- SHA1
  
  5278069eeb72dac25aa8aa6be940eeb992678e00
- SHA256
  
  e5de9717dc53dcdd20b31dd6064765664d991322b0a45936d7cd2bb4f3edcf99
- SHA512
  
  2f8b3f3c677be51de5a111762e94a29f2d58893429a42180e630ca6018eb1fdaee72dc2a725019cc02a42f1490289977bbb0f17b54c529570cfdcaeea23f0d45
- SSDEEP
  
  768:3zAABkD3tjVVc3mW2E/CaoPAKqqTewNxiXJJXJJ1JJXJJXJJ2JJ2JJ2JJKoJJJJc:jBw35IgaoYKdpyBxgGJ2LfsBMu/H1
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence