0550f59e16a209918880a41ef7ca96524dbbff627092772f09ddcda8f02f4729 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0550f59e16a209918880a41ef7ca96524dbbff627092772f09ddcda8f02f4729
Size

1.1MB
Sample

221030-gx6qbsfbf8
MD5

846be6730c2eb8cb94666900f18e4eb0
SHA1

f5bb3b3c7a39dae33cb69f1aad7a06517936c9ac
SHA256

0550f59e16a209918880a41ef7ca96524dbbff627092772f09ddcda8f02f4729
SHA512

de3f648d7ac17b734b66299d25d778d7b206006c5e4b8fae402e53040acd32265084329c6bc5114150183af548114fcd43dc5d3739fd28a646551160b28c752e
SSDEEP

24576:XN6MKlvRkomXoVGMvSsIfCFHhUC4Y5a/AlAUJi2oii4r0CZxrHmOtI:8MKM8G0SYHN4Y5EAlAzLixBZNGOW

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  0550f59e16a209918880a41ef7ca96524dbbff627092772f09ddcda8f02f4729
- Size
  
  1.1MB
- MD5
  
  846be6730c2eb8cb94666900f18e4eb0
- SHA1
  
  f5bb3b3c7a39dae33cb69f1aad7a06517936c9ac
- SHA256
  
  0550f59e16a209918880a41ef7ca96524dbbff627092772f09ddcda8f02f4729
- SHA512
  
  de3f648d7ac17b734b66299d25d778d7b206006c5e4b8fae402e53040acd32265084329c6bc5114150183af548114fcd43dc5d3739fd28a646551160b28c752e
- SSDEEP
  
  24576:XN6MKlvRkomXoVGMvSsIfCFHhUC4Y5a/AlAUJi2oii4r0CZxrHmOtI:8MKM8G0SYHN4Y5EAlAzLixBZNGOW
Score

8^/10

persistence
- Executes dropped EXE
- Drops startup file
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2