e2f693091a5a764ac8f886dfff61cd83a77579cff840bea8aee9977e06c89d05 | Triage

Submit
Reports

Overview

overview

Static

static

3

e2f693091a...05.exe

windows7-x64

e2f693091a...05.exe

windows10-2004-x64

Sharing

General

Target

e2f693091a5a764ac8f886dfff61cd83a77579cff840bea8aee9977e06c89d05
Size

302KB
Sample

240701-ecltbavgna
MD5

464a3658ad0a491dde5bc3d8a8327406
SHA1

41de4e3db0cf5d1f5feefe394f3fc1fbd53f6b8b
SHA256

e2f693091a5a764ac8f886dfff61cd83a77579cff840bea8aee9977e06c89d05
SHA512

62296f66daa663d45c968cf73889aa84746d352370e801d0bb49801ebe09d16fcef95a251e71a637d7f1a90b804f09dcfab2a157d19be104884c6c4714bae300
SSDEEP

6144:NKwu0baB5w0I93FF7fPtcsw6UJZqktbOUqCTGepXgbWH:VAun3FF7fFcsw6UJZqktbDqCTGepXgbW

Score

10^/10

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

e2f693091a5a764ac8f886dfff61cd83a77579cff840bea8aee9977e06c89d05.exe

Resource

win7-20240419-en

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

e2f693091a5a764ac8f886dfff61cd83a77579cff840bea8aee9977e06c89d05.exe

Resource

win10v2004-20240611-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  e2f693091a5a764ac8f886dfff61cd83a77579cff840bea8aee9977e06c89d05
- Size
  
  302KB
- MD5
  
  464a3658ad0a491dde5bc3d8a8327406
- SHA1
  
  41de4e3db0cf5d1f5feefe394f3fc1fbd53f6b8b
- SHA256
  
  e2f693091a5a764ac8f886dfff61cd83a77579cff840bea8aee9977e06c89d05
- SHA512
  
  62296f66daa663d45c968cf73889aa84746d352370e801d0bb49801ebe09d16fcef95a251e71a637d7f1a90b804f09dcfab2a157d19be104884c6c4714bae300
- SSDEEP
  
  6144:NKwu0baB5w0I93FF7fPtcsw6UJZqktbOUqCTGepXgbWH:VAun3FF7fFcsw6UJZqktbDqCTGepXgbW
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy