4ea5b729fdad4186c4443cfac0ad6eab879bf627adc51601ff161cb93a6c5653 | Triage

Sharing

General

Target

4ea5b729fdad4186c4443cfac0ad6eab879bf627adc51601ff161cb93a6c5653
Size

90KB
Sample

220520-2elbwsfbg9
MD5

6b8d8102da895e06654c96b19cc9e8f2
SHA1

110936da99fdf5dee7bb0246042292050f231633
SHA256

4ea5b729fdad4186c4443cfac0ad6eab879bf627adc51601ff161cb93a6c5653
SHA512

101b1e466a567de958478726f26591ebbed827b47e76e2f30d2e4afc1c6fa1fea927967a69f79949c9e630468f844a2ecb26f74f8ae33bea3c6d36f4de8d1990

Score

8^/10

evasion persistence

Malware Config

Targets

- Target
  
  4ea5b729fdad4186c4443cfac0ad6eab879bf627adc51601ff161cb93a6c5653
- Size
  
  90KB
- MD5
  
  6b8d8102da895e06654c96b19cc9e8f2
- SHA1
  
  110936da99fdf5dee7bb0246042292050f231633
- SHA256
  
  4ea5b729fdad4186c4443cfac0ad6eab879bf627adc51601ff161cb93a6c5653
- SHA512
  
  101b1e466a567de958478726f26591ebbed827b47e76e2f30d2e4afc1c6fa1fea927967a69f79949c9e630468f844a2ecb26f74f8ae33bea3c6d36f4de8d1990
Score

8^/10

evasion persistence
- Disables RegEdit via registry modification
  evasion
- Disables Task Manager via registry modification
  evasion
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasionpersistence

behavioral2

evasionpersistence