71e0b9978fc1fdcb909e6a6510c8944e06dc29ec21690532d66eb7527d3641de | Triage

Sharing

General

Target

e482a4e792d6f6b3fca23873e5f47110N
Size

390KB
Sample

240914-p5aa4averh
MD5

e482a4e792d6f6b3fca23873e5f47110
SHA1

e307ef158a5e138d1836f7c731a3bf7fd0f3adbc
SHA256

71e0b9978fc1fdcb909e6a6510c8944e06dc29ec21690532d66eb7527d3641de
SHA512

d2e424aec75f12f239df80c298a6fce3e2c7efb971f4a75b5f354a4fd41964e61b3bbafc642d44713595d1b7f63db101e9d68d0ae82893b7c3e030ff5403f127
SSDEEP

6144:4OCF/uGv9G466b+X0RjtdgOPAUvgkNRgdgOPAUvgkG:4OCF/NaUngEiM2gEif

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  e482a4e792d6f6b3fca23873e5f47110N
- Size
  
  390KB
- MD5
  
  e482a4e792d6f6b3fca23873e5f47110
- SHA1
  
  e307ef158a5e138d1836f7c731a3bf7fd0f3adbc
- SHA256
  
  71e0b9978fc1fdcb909e6a6510c8944e06dc29ec21690532d66eb7527d3641de
- SHA512
  
  d2e424aec75f12f239df80c298a6fce3e2c7efb971f4a75b5f354a4fd41964e61b3bbafc642d44713595d1b7f63db101e9d68d0ae82893b7c3e030ff5403f127
- SSDEEP
  
  6144:4OCF/uGv9G466b+X0RjtdgOPAUvgkNRgdgOPAUvgkG:4OCF/NaUngEiM2gEif
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence