65d52868cfbece474c05c4ce063c708ba6884d749cc48978b0128831631ba28f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

65d52868cfbece474c05c4ce063c708ba6884d749cc48978b0128831631ba28f
Size

150KB
Sample

221003-rtfd3sbban
MD5

6bb91fedbe574b2b673b30dfc0956bfa
SHA1

f50e555f360167dc1564ae7c811a4d283516f20f
SHA256

65d52868cfbece474c05c4ce063c708ba6884d749cc48978b0128831631ba28f
SHA512

c1068d71175f63ffe68135dec3968b0e0d237e416acb6d470ad2b41337dc094f3192f97b2ece0603d87a8ce798ae7f30ec496f14885689c3077714ba4d85e0f4
SSDEEP

3072:+au8gl4pZ3Sy40rfvFpNajHFUgVGdgQgYzxdwR9:+au8d7SyrjdS+xdgQg7

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  65d52868cfbece474c05c4ce063c708ba6884d749cc48978b0128831631ba28f
- Size
  
  150KB
- MD5
  
  6bb91fedbe574b2b673b30dfc0956bfa
- SHA1
  
  f50e555f360167dc1564ae7c811a4d283516f20f
- SHA256
  
  65d52868cfbece474c05c4ce063c708ba6884d749cc48978b0128831631ba28f
- SHA512
  
  c1068d71175f63ffe68135dec3968b0e0d237e416acb6d470ad2b41337dc094f3192f97b2ece0603d87a8ce798ae7f30ec496f14885689c3077714ba4d85e0f4
- SSDEEP
  
  3072:+au8gl4pZ3Sy40rfvFpNajHFUgVGdgQgYzxdwR9:+au8d7SyrjdS+xdgQg7
Score

8^/10

persistence
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2