ea11d82530f2779f4e21d5a9f20d9f036a8d0060f9302d18f7bb4cc6f43cb35b | Triage

Submit
Reports

Overview

overview

Static

static

3

ea11d82530...5b.exe

windows7-x64

ea11d82530...5b.exe

windows10-2004-x64

Sharing

General

Target

ea11d82530f2779f4e21d5a9f20d9f036a8d0060f9302d18f7bb4cc6f43cb35b
Size

96KB
Sample

240701-er315swbrh
MD5

ef78bdab275eee0afa073853657972c5
SHA1

a92cd7a0477d2a25efc4e521f935b3e2415a6e77
SHA256

ea11d82530f2779f4e21d5a9f20d9f036a8d0060f9302d18f7bb4cc6f43cb35b
SHA512

52f104499d315cef8e1102bfbbcf55c44f1629457564acb1eec9026233ba7e9eb4ee9a26b4d8e7c0ed9ed4e9a4a0cd608419edeeab3b76302b51d0d55641d737
SSDEEP

1536:nZzKk446hBPnrLgPn3wJ4BUy2LzaIZTJ+7LhkiB0MPiKeEAgH:Uk440PnA/wJSU/zaMU7uihJ5

Score

10^/10

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

ea11d82530f2779f4e21d5a9f20d9f036a8d0060f9302d18f7bb4cc6f43cb35b.exe

Resource

win7-20240611-en

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

ea11d82530f2779f4e21d5a9f20d9f036a8d0060f9302d18f7bb4cc6f43cb35b.exe

Resource

win10v2004-20240508-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  ea11d82530f2779f4e21d5a9f20d9f036a8d0060f9302d18f7bb4cc6f43cb35b
- Size
  
  96KB
- MD5
  
  ef78bdab275eee0afa073853657972c5
- SHA1
  
  a92cd7a0477d2a25efc4e521f935b3e2415a6e77
- SHA256
  
  ea11d82530f2779f4e21d5a9f20d9f036a8d0060f9302d18f7bb4cc6f43cb35b
- SHA512
  
  52f104499d315cef8e1102bfbbcf55c44f1629457564acb1eec9026233ba7e9eb4ee9a26b4d8e7c0ed9ed4e9a4a0cd608419edeeab3b76302b51d0d55641d737
- SSDEEP
  
  1536:nZzKk446hBPnrLgPn3wJ4BUy2LzaIZTJ+7LhkiB0MPiKeEAgH:Uk440PnA/wJSU/zaMU7uihJ5
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy