56366ae1f6e1f11e380f4aa7c6d17e876a220e2e8630073385f7f0d7056d8f6a | Triage

Sharing

General

Target

56366ae1f6e1f11e380f4aa7c6d17e876a220e2e8630073385f7f0d7056d8f6a
Size

139KB
Sample

221029-a1trlsedej
MD5

0c07981a673ed47799a2faeec44722f0
SHA1

a94f8a3a3553dfce0c9aef4171471497ba2ca067
SHA256

56366ae1f6e1f11e380f4aa7c6d17e876a220e2e8630073385f7f0d7056d8f6a
SHA512

af44660e51d1b2c8c11c62d9ba1b238fb9ea54c381aa209143227949b6789f13c191888c54c143dc199b8455c8fb8f5fcd666e15fea8521d18e7ff2acfed8f27
SSDEEP

3072:Ag80rFQjzNbHUrRVJ/F0MKmPNdpBTeG+ueunR8JjKGBhcy:r80SYpqMKmPNdnXWeM5fcy

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  56366ae1f6e1f11e380f4aa7c6d17e876a220e2e8630073385f7f0d7056d8f6a
- Size
  
  139KB
- MD5
  
  0c07981a673ed47799a2faeec44722f0
- SHA1
  
  a94f8a3a3553dfce0c9aef4171471497ba2ca067
- SHA256
  
  56366ae1f6e1f11e380f4aa7c6d17e876a220e2e8630073385f7f0d7056d8f6a
- SHA512
  
  af44660e51d1b2c8c11c62d9ba1b238fb9ea54c381aa209143227949b6789f13c191888c54c143dc199b8455c8fb8f5fcd666e15fea8521d18e7ff2acfed8f27
- SSDEEP
  
  3072:Ag80rFQjzNbHUrRVJ/F0MKmPNdpBTeG+ueunR8JjKGBhcy:r80SYpqMKmPNdnXWeM5fcy
Score

8^/10

persistence
- Executes dropped EXE
- Modifies AppInit DLL entries
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2