fe3a5b4e9eb11978a39ca6b906170eb46256c800494fa1647766f71609f65ff5 | Triage

Sharing

General

Target

fe3a5b4e9eb11978a39ca6b906170eb46256c800494fa1647766f71609f65ff5
Size

166KB
Sample

221127-n5wnnaeh46
MD5

958d39fe6e44bcf1c8159000b126586b
SHA1

3aba7886806285c94c5c97fa88a88f584a301f49
SHA256

fe3a5b4e9eb11978a39ca6b906170eb46256c800494fa1647766f71609f65ff5
SHA512

7e00f7e6a06a543a9606672a9d1f5592e0d7c1564eeadbb3f7361e280baa9a3af74071e8a54c2fd168948616495ef8c78acf7b4a17cd03b895f8a34f5e72cbc4
SSDEEP

3072:xmCZPu75vBogHa5I9dZ1wpbT07nz1BxVHwx6OUt0kgMAmS:ZE5mg6K4FI9tMhgg

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  fe3a5b4e9eb11978a39ca6b906170eb46256c800494fa1647766f71609f65ff5
- Size
  
  166KB
- MD5
  
  958d39fe6e44bcf1c8159000b126586b
- SHA1
  
  3aba7886806285c94c5c97fa88a88f584a301f49
- SHA256
  
  fe3a5b4e9eb11978a39ca6b906170eb46256c800494fa1647766f71609f65ff5
- SHA512
  
  7e00f7e6a06a543a9606672a9d1f5592e0d7c1564eeadbb3f7361e280baa9a3af74071e8a54c2fd168948616495ef8c78acf7b4a17cd03b895f8a34f5e72cbc4
- SSDEEP
  
  3072:xmCZPu75vBogHa5I9dZ1wpbT07nz1BxVHwx6OUt0kgMAmS:ZE5mg6K4FI9tMhgg
Score

7^/10

persistence
- Deletes itself
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2