edcf3e3690b274df803bad164ea4aa4016ae8750b8350483b73dd198e79764d3 | Triage

Sharing

General

Target

edcf3e3690b274df803bad164ea4aa4016ae8750b8350483b73dd198e79764d3
Size

81KB
Sample

240919-dn7dqayapl
MD5

5fb65864aa81e256ee4a50cefdf2d086
SHA1

48ec49aa41839205e8bef59d235266093be2d276
SHA256

edcf3e3690b274df803bad164ea4aa4016ae8750b8350483b73dd198e79764d3
SHA512

8b098dfe5e1dcfeb0378c9cb026e5b1f873377b6d8ff6f14aaba16cbe372cdc4ecfc376a4384e4420a2e0190c80a4ee4c11c2779648e86bed38edcc3a99700bd
SSDEEP

1536:abSshapMJgKJUuxGmfJPtOgqm1s/XZSWcH7:K25KJFjfJPtOgqm2/XZX6

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  edcf3e3690b274df803bad164ea4aa4016ae8750b8350483b73dd198e79764d3
- Size
  
  81KB
- MD5
  
  5fb65864aa81e256ee4a50cefdf2d086
- SHA1
  
  48ec49aa41839205e8bef59d235266093be2d276
- SHA256
  
  edcf3e3690b274df803bad164ea4aa4016ae8750b8350483b73dd198e79764d3
- SHA512
  
  8b098dfe5e1dcfeb0378c9cb026e5b1f873377b6d8ff6f14aaba16cbe372cdc4ecfc376a4384e4420a2e0190c80a4ee4c11c2779648e86bed38edcc3a99700bd
- SSDEEP
  
  1536:abSshapMJgKJUuxGmfJPtOgqm1s/XZSWcH7:K25KJFjfJPtOgqm2/XZX6
Score

7^/10

discovery persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence