fbefb3d5ee542a168664e0be3c219c65ab8cadb91aa8860c62b8eb850c14fb44 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fbefb3d5ee542a168664e0be3c219c65ab8cadb91aa8860c62b8eb850c14fb44
Size

236KB
Sample

221203-czra7sah8z
MD5

fdc84151b09b395a21aec7bfeaedbfda
SHA1

8e73fed3d19447994e3efed3b007830a02d43d76
SHA256

fbefb3d5ee542a168664e0be3c219c65ab8cadb91aa8860c62b8eb850c14fb44
SHA512

83173e3571d45da6cbdfe22c753e2a6016f3a5db04ad6f05ac1bde8421771121811029717b63cdb9cbf6409b11fbdfcde2e902f0a8660211b69585ad136b1ae5
SSDEEP

3072:SeqmgHwlaazN9U3J+P0wFp+bLrt2wkkIb:+Qj9U3jwO3rt5k

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  fbefb3d5ee542a168664e0be3c219c65ab8cadb91aa8860c62b8eb850c14fb44
- Size
  
  236KB
- MD5
  
  fdc84151b09b395a21aec7bfeaedbfda
- SHA1
  
  8e73fed3d19447994e3efed3b007830a02d43d76
- SHA256
  
  fbefb3d5ee542a168664e0be3c219c65ab8cadb91aa8860c62b8eb850c14fb44
- SHA512
  
  83173e3571d45da6cbdfe22c753e2a6016f3a5db04ad6f05ac1bde8421771121811029717b63cdb9cbf6409b11fbdfcde2e902f0a8660211b69585ad136b1ae5
- SSDEEP
  
  3072:SeqmgHwlaazN9U3J+P0wFp+bLrt2wkkIb:+Qj9U3jwO3rt5k
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2