5b1b3ec7a6917e47c52d78949086c4578f698765835b3b741014945ff2909cba | Triage

Sharing

General

Target

5b1b3ec7a6917e47c52d78949086c4578f698765835b3b741014945ff2909cba
Size

50KB
Sample

221126-kxm5rsfe94
MD5

a97ecec8f72e268571cff804ae337510
SHA1

fef88db1787f0562e23d1e167cda9c21e0b9a2c2
SHA256

5b1b3ec7a6917e47c52d78949086c4578f698765835b3b741014945ff2909cba
SHA512

6e92b7ab7cd5c31a1f1f8fa4eefa1e02c98c343599e5c1abd1d2e1caebd7377def10cb0622ba770e167f2ca08fdd15c6a2134039bf4c55f1743354d757aa9515
SSDEEP

768:foWlIbda5eHkXQwS3Lt+qpkGdA4w/TC599EDIJ0QTz2/1H5N:foW2QeEXKh6pbCv9ED0/Q

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  5b1b3ec7a6917e47c52d78949086c4578f698765835b3b741014945ff2909cba
- Size
  
  50KB
- MD5
  
  a97ecec8f72e268571cff804ae337510
- SHA1
  
  fef88db1787f0562e23d1e167cda9c21e0b9a2c2
- SHA256
  
  5b1b3ec7a6917e47c52d78949086c4578f698765835b3b741014945ff2909cba
- SHA512
  
  6e92b7ab7cd5c31a1f1f8fa4eefa1e02c98c343599e5c1abd1d2e1caebd7377def10cb0622ba770e167f2ca08fdd15c6a2134039bf4c55f1743354d757aa9515
- SSDEEP
  
  768:foWlIbda5eHkXQwS3Lt+qpkGdA4w/TC599EDIJ0QTz2/1H5N:foW2QeEXKh6pbCv9ED0/Q
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2