5d1dc98fc2a1abd3255ecdda7a4f0d26b8e4ca89c9f04dfb870f7a548adfbd79 | Triage

Sharing

General

Target

5d1dc98fc2a1abd3255ecdda7a4f0d26b8e4ca89c9f04dfb870f7a548adfbd79
Size

15KB
Sample

221123-s82fjagd7y
MD5

acab1357b46338b09e3d86645371a77d
SHA1

05dd85b66d993265fa6216a610ea874853206c0f
SHA256

5d1dc98fc2a1abd3255ecdda7a4f0d26b8e4ca89c9f04dfb870f7a548adfbd79
SHA512

73e19b2c91188e964323bc0415afbeb0f4672b1b310475cc7072f39c1a9ac334b3d3c5d8631f7d8b32d8939f7f221854ca36780f0e4d0fd7dc4f985f18b62a72
SSDEEP

384:g+xzAiGagRYwZSFFOECXCghDIHXWmAgF9f7qtOkLT:gE4agRYwZSGECXCgumxgetOkLT

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  5d1dc98fc2a1abd3255ecdda7a4f0d26b8e4ca89c9f04dfb870f7a548adfbd79
- Size
  
  15KB
- MD5
  
  acab1357b46338b09e3d86645371a77d
- SHA1
  
  05dd85b66d993265fa6216a610ea874853206c0f
- SHA256
  
  5d1dc98fc2a1abd3255ecdda7a4f0d26b8e4ca89c9f04dfb870f7a548adfbd79
- SHA512
  
  73e19b2c91188e964323bc0415afbeb0f4672b1b310475cc7072f39c1a9ac334b3d3c5d8631f7d8b32d8939f7f221854ca36780f0e4d0fd7dc4f985f18b62a72
- SSDEEP
  
  384:g+xzAiGagRYwZSFFOECXCghDIHXWmAgF9f7qtOkLT:gE4agRYwZSGECXCgumxgetOkLT
Score

8^/10

persistence
- Blocklisted process makes network request
- Drops startup file
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2