8409a666f77caf9de8af6e45fa759f393e72e206ed88bcbf2b0bdfdffe0174cf | Triage

Sharing

General

Target

e6e4c7272123898f09cb1a34806553e0N
Size

120KB
Sample

240911-z3r38stelb
MD5

e6e4c7272123898f09cb1a34806553e0
SHA1

0bc4832a4527c04b76a4e442098712a481aa578b
SHA256

8409a666f77caf9de8af6e45fa759f393e72e206ed88bcbf2b0bdfdffe0174cf
SHA512

ea5dc59745508f850615f2bfcea1d0f9d05b93df363adf7a66cfe10eabd90bf30dd2563d6b57343a90107e509d3d7ee5cff2ace8c5e18122d25abd2cfae8e0d8
SSDEEP

1536:wCr1YBeMidWpYl0cRKdvsAj8BSHaoHB3B416jz0cZ44mjD9r823F4:ZrGORKdNjKS62B3Cbi/mjRrz3C

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  e6e4c7272123898f09cb1a34806553e0N
- Size
  
  120KB
- MD5
  
  e6e4c7272123898f09cb1a34806553e0
- SHA1
  
  0bc4832a4527c04b76a4e442098712a481aa578b
- SHA256
  
  8409a666f77caf9de8af6e45fa759f393e72e206ed88bcbf2b0bdfdffe0174cf
- SHA512
  
  ea5dc59745508f850615f2bfcea1d0f9d05b93df363adf7a66cfe10eabd90bf30dd2563d6b57343a90107e509d3d7ee5cff2ace8c5e18122d25abd2cfae8e0d8
- SSDEEP
  
  1536:wCr1YBeMidWpYl0cRKdvsAj8BSHaoHB3B416jz0cZ44mjD9r823F4:ZrGORKdNjKS62B3Cbi/mjRrz3C
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence