514372ed158f8c58ab5ab17c66a31238fb9c80cfadb4a927b296677b9f93814d | Triage

Sharing

General

Target

514372ed158f8c58ab5ab17c66a31238fb9c80cfadb4a927b296677b9f93814d
Size

332KB
Sample

221107-xj791acgh3
MD5

01c81da66fd719b96ba3421c90e8c398
SHA1

91624eae0a8a81c00f5e5e4abaa401f4fbb8beac
SHA256

514372ed158f8c58ab5ab17c66a31238fb9c80cfadb4a927b296677b9f93814d
SHA512

18872dd54f7b708c2212507756ce55ef3002d1fb0cdd329711425ea9a280aecd5e2263255cd970a58148fc1ba6be3855ac0b79f9da0e8499161f385ed2f6f5b6
SSDEEP

6144:bhmkZkgelPgepycU5c10c1mZ+yDE9XFgn7UhT1AAhlTJjnBr6:bhmkZkZhgepFF/mZp41xViqfnF

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  514372ed158f8c58ab5ab17c66a31238fb9c80cfadb4a927b296677b9f93814d
- Size
  
  332KB
- MD5
  
  01c81da66fd719b96ba3421c90e8c398
- SHA1
  
  91624eae0a8a81c00f5e5e4abaa401f4fbb8beac
- SHA256
  
  514372ed158f8c58ab5ab17c66a31238fb9c80cfadb4a927b296677b9f93814d
- SHA512
  
  18872dd54f7b708c2212507756ce55ef3002d1fb0cdd329711425ea9a280aecd5e2263255cd970a58148fc1ba6be3855ac0b79f9da0e8499161f385ed2f6f5b6
- SSDEEP
  
  6144:bhmkZkgelPgepycU5c10c1mZ+yDE9XFgn7UhT1AAhlTJjnBr6:bhmkZkZhgepFF/mZp41xViqfnF
Score

8^/10

persistence
- Executes dropped EXE
- Deletes itself
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Remote System Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2