13d6de33772ea72ee2c1c4d9ba9584d716222cf098c195632f6c41759e8d1b3f | Triage

Sharing

General

Target

13d6de33772ea72ee2c1c4d9ba9584d716222cf098c195632f6c41759e8d1b3f
Size

50KB
Sample

221126-kxvjvafe98
MD5

fc3332bb6e15f35114a62f90346f0960
SHA1

ea10165600d6a08be4fc7b946eb95943cdaf2ec8
SHA256

13d6de33772ea72ee2c1c4d9ba9584d716222cf098c195632f6c41759e8d1b3f
SHA512

840075f024b4684b0ad76edc28ce2b35cb0a555906aeaf750d5406ae9bc9973392ecf9e9369b9eff36671a7d65e1caa4d53970966a4372c4eef32e49d40c276d
SSDEEP

768:IY4DxEiRFMw2809OEdJZeeFJj8H6WFFCWxbb2UiA0CTFtSqOrsfbr/1H5h:IY4KU27kMera2Fj5ft9eqOrW5X

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  13d6de33772ea72ee2c1c4d9ba9584d716222cf098c195632f6c41759e8d1b3f
- Size
  
  50KB
- MD5
  
  fc3332bb6e15f35114a62f90346f0960
- SHA1
  
  ea10165600d6a08be4fc7b946eb95943cdaf2ec8
- SHA256
  
  13d6de33772ea72ee2c1c4d9ba9584d716222cf098c195632f6c41759e8d1b3f
- SHA512
  
  840075f024b4684b0ad76edc28ce2b35cb0a555906aeaf750d5406ae9bc9973392ecf9e9369b9eff36671a7d65e1caa4d53970966a4372c4eef32e49d40c276d
- SSDEEP
  
  768:IY4DxEiRFMw2809OEdJZeeFJj8H6WFFCWxbb2UiA0CTFtSqOrsfbr/1H5h:IY4KU27kMera2Fj5ft9eqOrW5X
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2