e7876941f30d54f29d2291ba591aceeb00d00b57c2a433b08aab67c192f5b9c7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e7876941f30d54f29d2291ba591aceeb00d00b57c2a433b08aab67c192f5b9c7N
Size

89KB
Sample

241017-yh9xwasgne
MD5

369116325152efb3125755d231979d90
SHA1

ad8d70f1512b3251d1bc8cd16a99d2f3a1a4ff2a
SHA256

e7876941f30d54f29d2291ba591aceeb00d00b57c2a433b08aab67c192f5b9c7
SHA512

62e0fdf788fbeaead3f21748476a2dd9291f8b07a6306d07fccabe7cd13e4d91bcfc831c74f87ed55361c9e2653462533412cb69e258b155ef2e30834df6defc
SSDEEP

1536:Oy6LtNlp8dweWuB1AFJsnNDpMYdvDQIG5mUYykWzQ/wGRyMBHcblExkg8F:EdSdpWA1AFSNDdvaJQ/ZRyScblakgw

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  e7876941f30d54f29d2291ba591aceeb00d00b57c2a433b08aab67c192f5b9c7N
- Size
  
  89KB
- MD5
  
  369116325152efb3125755d231979d90
- SHA1
  
  ad8d70f1512b3251d1bc8cd16a99d2f3a1a4ff2a
- SHA256
  
  e7876941f30d54f29d2291ba591aceeb00d00b57c2a433b08aab67c192f5b9c7
- SHA512
  
  62e0fdf788fbeaead3f21748476a2dd9291f8b07a6306d07fccabe7cd13e4d91bcfc831c74f87ed55361c9e2653462533412cb69e258b155ef2e30834df6defc
- SSDEEP
  
  1536:Oy6LtNlp8dweWuB1AFJsnNDpMYdvDQIG5mUYykWzQ/wGRyMBHcblExkg8F:EdSdpWA1AFSNDdvaJQ/ZRyScblakgw
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence