General
-
Target
e2e3adca74a101c2ccc9449b7c75aff059d08864ba87698fdc6212e96390c799
-
Size
319KB
-
Sample
240629-esc64stelr
-
MD5
09792127dbc60545639e024d1e2195e5
-
SHA1
58fe06a353b2a4d6ab3d4fdc10a7c305f7563335
-
SHA256
e2e3adca74a101c2ccc9449b7c75aff059d08864ba87698fdc6212e96390c799
-
SHA512
0ea9ea7e7508192ea49db5b4d3da0baa8ae25612e044048c2313e356e2fcb70bfee68b5525305ed626d1186919cea598caf2bcf8ca026a6884e5f43e67b87589
-
SSDEEP
3072:XVqoCl/YgjxEufVU0TbTyDDalBVnnAQVG/LytaKItS/fiLKS+f5Aq7iu:XsLqdufVUNDa5OTeHI8HiL7+f5b
Static task
static1
Behavioral task
behavioral1
Sample
e2e3adca74a101c2ccc9449b7c75aff059d08864ba87698fdc6212e96390c799.exe
Resource
win7-20240508-en
Malware Config
Targets
-
-
Target
e2e3adca74a101c2ccc9449b7c75aff059d08864ba87698fdc6212e96390c799
-
Size
319KB
-
MD5
09792127dbc60545639e024d1e2195e5
-
SHA1
58fe06a353b2a4d6ab3d4fdc10a7c305f7563335
-
SHA256
e2e3adca74a101c2ccc9449b7c75aff059d08864ba87698fdc6212e96390c799
-
SHA512
0ea9ea7e7508192ea49db5b4d3da0baa8ae25612e044048c2313e356e2fcb70bfee68b5525305ed626d1186919cea598caf2bcf8ca026a6884e5f43e67b87589
-
SSDEEP
3072:XVqoCl/YgjxEufVU0TbTyDDalBVnnAQVG/LytaKItS/fiLKS+f5Aq7iu:XsLqdufVUNDa5OTeHI8HiL7+f5b
-
Modifies visiblity of hidden/system files in Explorer
-
UPX dump on OEP (original entry point)
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Drops file in System32 directory
-
MITRE ATT&CK Matrix ATT&CK v13
Persistence
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Scheduled Task/Job
1Scheduled Task
1Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Scheduled Task/Job
1Scheduled Task
1