e9a1df313881553151dcb27e4296c0e4b9e4e3d60951560fe5e293158591011b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e9a1df313881553151dcb27e4296c0e4b9e4e3d60951560fe5e293158591011bN
Size

63KB
Sample

241014-sx74yawcml
MD5

f8a5e732202ae293a90ad383bef1e530
SHA1

0806cb7368c56bc78f91b93190db2b6d38842516
SHA256

e9a1df313881553151dcb27e4296c0e4b9e4e3d60951560fe5e293158591011b
SHA512

ff2f3ddd83ea1a494389ec2e8188d3a1295fec483dca71b01c2239f6b757aab6f3c973fda8191d74613160d568c9a71b714af4f5ee3bdc3564288e15c2afd864
SSDEEP

1536:gwA8rPOSW39WidI/7qK24vptwdxZRuCwAP/+wlW/:K8rPYdI/7qyvptcxP5PWwlW/

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  e9a1df313881553151dcb27e4296c0e4b9e4e3d60951560fe5e293158591011bN
- Size
  
  63KB
- MD5
  
  f8a5e732202ae293a90ad383bef1e530
- SHA1
  
  0806cb7368c56bc78f91b93190db2b6d38842516
- SHA256
  
  e9a1df313881553151dcb27e4296c0e4b9e4e3d60951560fe5e293158591011b
- SHA512
  
  ff2f3ddd83ea1a494389ec2e8188d3a1295fec483dca71b01c2239f6b757aab6f3c973fda8191d74613160d568c9a71b714af4f5ee3bdc3564288e15c2afd864
- SSDEEP
  
  1536:gwA8rPOSW39WidI/7qK24vptwdxZRuCwAP/+wlW/:K8rPYdI/7qyvptcxP5PWwlW/
Score

7^/10

discovery persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence