b3da5d0851dc3eb600802b2cf5ae4689aaec1cfd321e4ea335fc3fe2fcc6c557 | Triage

Sharing

General

Target

b3da5d0851dc3eb600802b2cf5ae4689aaec1cfd321e4ea335fc3fe2fcc6c557
Size

515KB
Sample

221201-xvr26aca36
MD5

aeed651f979e942281e73a08181fbdc4
SHA1

987f17265a289ac9172b1111f3e65b01c05fbc11
SHA256

b3da5d0851dc3eb600802b2cf5ae4689aaec1cfd321e4ea335fc3fe2fcc6c557
SHA512

0f789130004cb4d74bc03d6729924b141cc6c570ed84b15e4d43d60570c153930de1348e37a86db6d8f6efb7b9bd830e823cdfc4d886dec6f9fe72292993271e
SSDEEP

12288:UJjPtlxWzYE6mFoC2Lg+WYeg5lqoswkC+kwr:UJBlczY5C2Lg+5eg5lJsrkw

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  b3da5d0851dc3eb600802b2cf5ae4689aaec1cfd321e4ea335fc3fe2fcc6c557
- Size
  
  515KB
- MD5
  
  aeed651f979e942281e73a08181fbdc4
- SHA1
  
  987f17265a289ac9172b1111f3e65b01c05fbc11
- SHA256
  
  b3da5d0851dc3eb600802b2cf5ae4689aaec1cfd321e4ea335fc3fe2fcc6c557
- SHA512
  
  0f789130004cb4d74bc03d6729924b141cc6c570ed84b15e4d43d60570c153930de1348e37a86db6d8f6efb7b9bd830e823cdfc4d886dec6f9fe72292993271e
- SSDEEP
  
  12288:UJjPtlxWzYE6mFoC2Lg+WYeg5lqoswkC+kwr:UJBlczY5C2Lg+5eg5lJsrkw
Score

8^/10

persistence
- Adds policy Run key to start application
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2