ad02fa1526473b0455cd5a2d04334b03eb1aa5aa2795859c8b0380d6f81c8fce | Triage

Sharing

General

Target

ad02fa1526473b0455cd5a2d04334b03eb1aa5aa2795859c8b0380d6f81c8fce
Size

187KB
Sample

221014-mw2ymsbhf3
MD5

695ca1aca32454a76048a591fc094df1
SHA1

35761c985396446243b3f63cdebf9f0553b8b873
SHA256

ad02fa1526473b0455cd5a2d04334b03eb1aa5aa2795859c8b0380d6f81c8fce
SHA512

55e44f446f605fd141927076644c93fe46f9c0e3f2feeda7a9445a78de0f095d9bc91450bf762abe4fc1416a3d5f5db22b059d39338053004c67c871b1b68465
SSDEEP

3072:UJyEAD8ba4OJevgAkhZxvBFUF8sKjJiGXunqxPuSh5IHseVNN/VG2HqFfSu:lEEkvg7hZxpFUF8sKpXw015IBNkRFfSu

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  ad02fa1526473b0455cd5a2d04334b03eb1aa5aa2795859c8b0380d6f81c8fce
- Size
  
  187KB
- MD5
  
  695ca1aca32454a76048a591fc094df1
- SHA1
  
  35761c985396446243b3f63cdebf9f0553b8b873
- SHA256
  
  ad02fa1526473b0455cd5a2d04334b03eb1aa5aa2795859c8b0380d6f81c8fce
- SHA512
  
  55e44f446f605fd141927076644c93fe46f9c0e3f2feeda7a9445a78de0f095d9bc91450bf762abe4fc1416a3d5f5db22b059d39338053004c67c871b1b68465
- SSDEEP
  
  3072:UJyEAD8ba4OJevgAkhZxvBFUF8sKjJiGXunqxPuSh5IHseVNN/VG2HqFfSu:lEEkvg7hZxpFUF8sKpXw015IBNkRFfSu
Score

8^/10

persistence
- Drops file in Drivers directory
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2