18b25bdf2ea96fb0fc5b56cfac385556bbaccf3e5382bc15dd1db4feea415179 | Triage

Sharing

General

Target

18b25bdf2ea96fb0fc5b56cfac385556bbaccf3e5382bc15dd1db4feea415179
Size

149KB
Sample

221030-xw1exsgbdk
MD5

81fb93642f59e4bb53d7b2f0fab0bf90
SHA1

ad83f040266b7ae86d9b248ddbf435cd5cc39f2b
SHA256

18b25bdf2ea96fb0fc5b56cfac385556bbaccf3e5382bc15dd1db4feea415179
SHA512

bc34c7d14444b29d0d167472b8b68658bd10fc2a5fe56d8e352ef0326528cbbfa471f66321f147f789b508e2b9f3585fafe1581fbc748ccbda4a0775baf154fd
SSDEEP

3072:Y6CtXQtHE9f5f9b2a5hvYeeV/KqhX/uSKBq17pDDAoDMvbv5de6pDEL00:BCtXO6fjYhy0X/u617FDCvje6uLF

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  18b25bdf2ea96fb0fc5b56cfac385556bbaccf3e5382bc15dd1db4feea415179
- Size
  
  149KB
- MD5
  
  81fb93642f59e4bb53d7b2f0fab0bf90
- SHA1
  
  ad83f040266b7ae86d9b248ddbf435cd5cc39f2b
- SHA256
  
  18b25bdf2ea96fb0fc5b56cfac385556bbaccf3e5382bc15dd1db4feea415179
- SHA512
  
  bc34c7d14444b29d0d167472b8b68658bd10fc2a5fe56d8e352ef0326528cbbfa471f66321f147f789b508e2b9f3585fafe1581fbc748ccbda4a0775baf154fd
- SSDEEP
  
  3072:Y6CtXQtHE9f5f9b2a5hvYeeV/KqhX/uSKBq17pDDAoDMvbv5de6pDEL00:BCtXO6fjYhy0X/u617FDCvje6uLF
Score

8^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2