5d65ec5e85586b80a9588c2d860e4439b946722b03125f07e38b12a24dfd3823 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5d65ec5e85586b80a9588c2d860e4439b946722b03125f07e38b12a24dfd3823
Size

81KB
Sample

221019-tpwllsfcg6
MD5

a112782458582ffbdb4e723e2b70ac50
SHA1

466ce6acfd1a726edc19850214325485c2bf2412
SHA256

5d65ec5e85586b80a9588c2d860e4439b946722b03125f07e38b12a24dfd3823
SHA512

8f572fc52e6d5b61e0fb4a630e2405090672c221adc5715eebb0c52ad4da5a36154e4099049d43aa27ccbbc0d79cab75ae9b61eca35a4e31f45b2cc92ef1a193
SSDEEP

1536:FNxU+W+73uSpoo3e/8+dcr2ySWuGsaMJAel1Reej33Uucvwj:NU+W+qNo3e9Sy/WuRa81Reej33Uucvwj

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  5d65ec5e85586b80a9588c2d860e4439b946722b03125f07e38b12a24dfd3823
- Size
  
  81KB
- MD5
  
  a112782458582ffbdb4e723e2b70ac50
- SHA1
  
  466ce6acfd1a726edc19850214325485c2bf2412
- SHA256
  
  5d65ec5e85586b80a9588c2d860e4439b946722b03125f07e38b12a24dfd3823
- SHA512
  
  8f572fc52e6d5b61e0fb4a630e2405090672c221adc5715eebb0c52ad4da5a36154e4099049d43aa27ccbbc0d79cab75ae9b61eca35a4e31f45b2cc92ef1a193
- SSDEEP
  
  1536:FNxU+W+73uSpoo3e/8+dcr2ySWuGsaMJAel1Reej33Uucvwj:NU+W+qNo3e9Sy/WuRa81Reej33Uucvwj
Score

8^/10

persistence
- Sets file execution options in registry
  persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2