518bfe4e00d4b4592f24866af66a79e4ce42e8653831d811aa421c0ab8a3a552 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

518bfe4e00d4b4592f24866af66a79e4ce42e8653831d811aa421c0ab8a3a552
Size

63KB
Sample

221029-y2fs5sddg7
MD5

a3a526aebd0ccf5dbd0a4cc81e87b4b0
SHA1

ed421411963681110fc91d3507088c84dfc0033b
SHA256

518bfe4e00d4b4592f24866af66a79e4ce42e8653831d811aa421c0ab8a3a552
SHA512

bc31fcb0d03cd66762219a1375c00784269b3d8d40c43524c1960cada5ccb022d0c080324ec90e5809f935383c3cd4fe4e360122bf77fefd557a1a791b56bc16
SSDEEP

1536:FNxU+W+73uSpoo3e/8+dcr2ySWuGONyMtjh:NU+W+qNo3e9Sy/WuyMtjh

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  518bfe4e00d4b4592f24866af66a79e4ce42e8653831d811aa421c0ab8a3a552
- Size
  
  63KB
- MD5
  
  a3a526aebd0ccf5dbd0a4cc81e87b4b0
- SHA1
  
  ed421411963681110fc91d3507088c84dfc0033b
- SHA256
  
  518bfe4e00d4b4592f24866af66a79e4ce42e8653831d811aa421c0ab8a3a552
- SHA512
  
  bc31fcb0d03cd66762219a1375c00784269b3d8d40c43524c1960cada5ccb022d0c080324ec90e5809f935383c3cd4fe4e360122bf77fefd557a1a791b56bc16
- SSDEEP
  
  1536:FNxU+W+73uSpoo3e/8+dcr2ySWuGONyMtjh:NU+W+qNo3e9Sy/WuyMtjh
Score

8^/10

persistence
- Sets file execution options in registry
  persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2