b5b0491c0c264b001bf6be87ec252715ae593fbb0d2a1d0e7c7346d8a93d1ac3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b5b0491c0c264b001bf6be87ec252715ae593fbb0d2a1d0e7c7346d8a93d1ac3
Size

903KB
Sample

221030-ngafhshegp
MD5

5237f9655b84af3b1c908de286372e40
SHA1

05e93bb221e682d3a20f12ed293b67e40602ca8c
SHA256

b5b0491c0c264b001bf6be87ec252715ae593fbb0d2a1d0e7c7346d8a93d1ac3
SHA512

d8486c3bbc008b16623f066addc831df5bbe43b746c72c0b68b3a03fded4fa6840afaf98abd1a27f9277ee28c4bfef5b714cd8d8b2d5841f3c79a49d247cde18
SSDEEP

24576:33IRPRHGF5p8Q0fX1hrHCsIYf3gRSDoUVYOh8ITn:3SJm/7E1NHPIY/gOTYO3

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  b5b0491c0c264b001bf6be87ec252715ae593fbb0d2a1d0e7c7346d8a93d1ac3
- Size
  
  903KB
- MD5
  
  5237f9655b84af3b1c908de286372e40
- SHA1
  
  05e93bb221e682d3a20f12ed293b67e40602ca8c
- SHA256
  
  b5b0491c0c264b001bf6be87ec252715ae593fbb0d2a1d0e7c7346d8a93d1ac3
- SHA512
  
  d8486c3bbc008b16623f066addc831df5bbe43b746c72c0b68b3a03fded4fa6840afaf98abd1a27f9277ee28c4bfef5b714cd8d8b2d5841f3c79a49d247cde18
- SSDEEP
  
  24576:33IRPRHGF5p8Q0fX1hrHCsIYf3gRSDoUVYOh8ITn:3SJm/7E1NHPIY/gOTYO3
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2