ta505 | 4bda777159fcaf021cb5ac98dc6f427fc0dc4725abb6a3d6521d7a0f89897063 | Triage

Sharing

General

Target

4bda777159fcaf021cb5ac98dc6f427fc0dc4725abb6a3d6521d7a0f89897063
Size

240KB
Sample

220201-tm14bahcdr
MD5

1407415f1df63ffa944e61bd0020f9f1
SHA1

194a42c44da4e56bac8d3675764da833c8692fe3
SHA256

4bda777159fcaf021cb5ac98dc6f427fc0dc4725abb6a3d6521d7a0f89897063
SHA512

e23317a793116972a48a9d3ffd03343adecb6758ccf5bdf8cc3fcf5f09b64b2932818968a5234689e74eed61de21f728f7d134e804e1d547266739dda53b11b0

Score

10^/10

ta505

Malware Config

Targets

- Target
  
  4bda777159fcaf021cb5ac98dc6f427fc0dc4725abb6a3d6521d7a0f89897063
- Size
  
  240KB
- MD5
  
  1407415f1df63ffa944e61bd0020f9f1
- SHA1
  
  194a42c44da4e56bac8d3675764da833c8692fe3
- SHA256
  
  4bda777159fcaf021cb5ac98dc6f427fc0dc4725abb6a3d6521d7a0f89897063
- SHA512
  
  e23317a793116972a48a9d3ffd03343adecb6758ccf5bdf8cc3fcf5f09b64b2932818968a5234689e74eed61de21f728f7d134e804e1d547266739dda53b11b0
Score

10^/10

ta505
- TA505
  Cybercrime group active since 2015, responsible for families like Dridex and Locky.
  ta505
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2