5fac647b5a4bf484838e0e00f40db252d1da3a8c6e5c8c9843c219eb2c90ef6f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5fac647b5a4bf484838e0e00f40db252d1da3a8c6e5c8c9843c219eb2c90ef6f
Size

866KB
Sample

221106-f6atksggbm
MD5

24e8071ecf5c1674bb5d27237fb79a16
SHA1

acccab3d7e8e5fe98267f3b84c0b2cb38f8d5b50
SHA256

5fac647b5a4bf484838e0e00f40db252d1da3a8c6e5c8c9843c219eb2c90ef6f
SHA512

d8b91706b1f636b0336644501428963a1d9ee660bf6975523ed0de8bff6b918fb7b89b814c4efebdf20039cf27b65bcdd23a0bfbf63308a085b18b4902a621d8
SSDEEP

24576:bRF2i9uZvK+IdpAmdDiIP/3RUVoFtzHZ0:KioK+7UvP/RxR0

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  5fac647b5a4bf484838e0e00f40db252d1da3a8c6e5c8c9843c219eb2c90ef6f
- Size
  
  866KB
- MD5
  
  24e8071ecf5c1674bb5d27237fb79a16
- SHA1
  
  acccab3d7e8e5fe98267f3b84c0b2cb38f8d5b50
- SHA256
  
  5fac647b5a4bf484838e0e00f40db252d1da3a8c6e5c8c9843c219eb2c90ef6f
- SHA512
  
  d8b91706b1f636b0336644501428963a1d9ee660bf6975523ed0de8bff6b918fb7b89b814c4efebdf20039cf27b65bcdd23a0bfbf63308a085b18b4902a621d8
- SSDEEP
  
  24576:bRF2i9uZvK+IdpAmdDiIP/3RUVoFtzHZ0:KioK+7UvP/RxR0
Score

8^/10

persistence
- Executes dropped EXE
- Deletes itself
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2