0e5091bf59e769e31eeeee5b71dc085f2dd8d5460f297f63d64e735b286d3387 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e744445dd6fd077c2ef89def9bafc7e0N
Size

62KB
Sample

240913-x2gvrsvbjh
MD5

e744445dd6fd077c2ef89def9bafc7e0
SHA1

a31de93d0603c65fac9c43c7012a9a495d1002ea
SHA256

0e5091bf59e769e31eeeee5b71dc085f2dd8d5460f297f63d64e735b286d3387
SHA512

cd8a2b69837cd29aa7c95f0bfae14b7a3d179a6c67c457a7135a94e032cce5ce3c760455e2fb1870bf5be9d84004678694141f304b89768b21c84b648d8d0548
SSDEEP

1536:ssp5LNZwaZKaucFYD2pRNJ9h15NxdBVZtRy2KuFzeC+ymhve8Cy:PpZga8XSpRNJ9h15NxdBVZtRy2KuFB+v

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  e744445dd6fd077c2ef89def9bafc7e0N
- Size
  
  62KB
- MD5
  
  e744445dd6fd077c2ef89def9bafc7e0
- SHA1
  
  a31de93d0603c65fac9c43c7012a9a495d1002ea
- SHA256
  
  0e5091bf59e769e31eeeee5b71dc085f2dd8d5460f297f63d64e735b286d3387
- SHA512
  
  cd8a2b69837cd29aa7c95f0bfae14b7a3d179a6c67c457a7135a94e032cce5ce3c760455e2fb1870bf5be9d84004678694141f304b89768b21c84b648d8d0548
- SSDEEP
  
  1536:ssp5LNZwaZKaucFYD2pRNJ9h15NxdBVZtRy2KuFzeC+ymhve8Cy:PpZga8XSpRNJ9h15NxdBVZtRy2KuFB+v
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence