aa5c76f54fe6147a5575a9f456b993e3f151d043434efa988281f68f40c43107 | Triage

Sharing

General

Target

aa5c76f54fe6147a5575a9f456b993e3f151d043434efa988281f68f40c43107
Size

50KB
Sample

221106-d8mvtadeam
MD5

192475afdc774605c5926ce581fe7560
SHA1

42c9b954830755caf13c44a4a5c90196dfb78c08
SHA256

aa5c76f54fe6147a5575a9f456b993e3f151d043434efa988281f68f40c43107
SHA512

1b5ff36bc8dd66a0a9a309d9e1e77059474900506823862c4f482f38963fd105e5a0ebea032154f32b999dac4606155fd69481398be6036b0667f110f6ad2cb8
SSDEEP

1536:9C6b8jfTCPuqfR8ZgqMt51hdpNZVB9JaGCOCGom:V3P18ZgEe

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  aa5c76f54fe6147a5575a9f456b993e3f151d043434efa988281f68f40c43107
- Size
  
  50KB
- MD5
  
  192475afdc774605c5926ce581fe7560
- SHA1
  
  42c9b954830755caf13c44a4a5c90196dfb78c08
- SHA256
  
  aa5c76f54fe6147a5575a9f456b993e3f151d043434efa988281f68f40c43107
- SHA512
  
  1b5ff36bc8dd66a0a9a309d9e1e77059474900506823862c4f482f38963fd105e5a0ebea032154f32b999dac4606155fd69481398be6036b0667f110f6ad2cb8
- SSDEEP
  
  1536:9C6b8jfTCPuqfR8ZgqMt51hdpNZVB9JaGCOCGom:V3P18ZgEe
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2