e270d098d258b5fbe24abf4aae4fe20156659202b1b623eb6bf06bb72fb99c62 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e270d098d258b5fbe24abf4aae4fe20156659202b1b623eb6bf06bb72fb99c62N
Size

350KB
Sample

240919-rpn6estcqj
MD5

fc2ab6174a60be10d3427770af9a54b0
SHA1

3651ba0b6e395b454b04debeff29882010b143c0
SHA256

e270d098d258b5fbe24abf4aae4fe20156659202b1b623eb6bf06bb72fb99c62
SHA512

f6bfe20e75e4720b9af190b9a33d2efa4de2887fd268fc2677a7a750dc8c14bff223feb98271fe3dec8b85e2b855a72f4ddb05eeb4c038279721562814a8c5b3
SSDEEP

6144:foFtpHVILifyeYVDcfflXpX6LRifyeYVDc:yHyefyeYCdXpXZfyeY

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  e270d098d258b5fbe24abf4aae4fe20156659202b1b623eb6bf06bb72fb99c62N
- Size
  
  350KB
- MD5
  
  fc2ab6174a60be10d3427770af9a54b0
- SHA1
  
  3651ba0b6e395b454b04debeff29882010b143c0
- SHA256
  
  e270d098d258b5fbe24abf4aae4fe20156659202b1b623eb6bf06bb72fb99c62
- SHA512
  
  f6bfe20e75e4720b9af190b9a33d2efa4de2887fd268fc2677a7a750dc8c14bff223feb98271fe3dec8b85e2b855a72f4ddb05eeb4c038279721562814a8c5b3
- SSDEEP
  
  6144:foFtpHVILifyeYVDcfflXpX6LRifyeYVDc:yHyefyeYCdXpXZfyeY
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence