05efdf1f2913db6abe0d5b1969aa22617937f77c2fe35c6d9bf7e00b02e7f7b4 | Triage

Sharing

General

Target

05efdf1f2913db6abe0d5b1969aa22617937f77c2fe35c6d9bf7e00b02e7f7b4
Size

1.2MB
Sample

210513-a7wesr9wrx
MD5

c626d944e1d25b4d894721ecc151e2fb
SHA1

c6ea49b7dae407c17cb8781323073e5d58eba328
SHA256

05efdf1f2913db6abe0d5b1969aa22617937f77c2fe35c6d9bf7e00b02e7f7b4
SHA512

32fae6194d4673aa423c2fa7a1dce562642bb14ecb9541191dd682346c1f86480b9cf1fa1d10edfc4eaba290502ddb5753750c82083a624736fd1695a0562c93

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  05efdf1f2913db6abe0d5b1969aa22617937f77c2fe35c6d9bf7e00b02e7f7b4
- Size
  
  1.2MB
- MD5
  
  c626d944e1d25b4d894721ecc151e2fb
- SHA1
  
  c6ea49b7dae407c17cb8781323073e5d58eba328
- SHA256
  
  05efdf1f2913db6abe0d5b1969aa22617937f77c2fe35c6d9bf7e00b02e7f7b4
- SHA512
  
  32fae6194d4673aa423c2fa7a1dce562642bb14ecb9541191dd682346c1f86480b9cf1fa1d10edfc4eaba290502ddb5753750c82083a624736fd1695a0562c93
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2