fed5e28f5d6ca5f2e7f5a5b60cb1ccabd653fea0053a1cee440f7ee2c9262d6e | Triage

Sharing

General

Target

fed5e28f5d6ca5f2e7f5a5b60cb1ccabd653fea0053a1cee440f7ee2c9262d6e
Size

370KB
Sample

221203-mrsjeace84
MD5

a80bf9cba80fa69b7612b5947b197723
SHA1

07622081d530608ac6619b6b25b75a5a7b820cad
SHA256

fed5e28f5d6ca5f2e7f5a5b60cb1ccabd653fea0053a1cee440f7ee2c9262d6e
SHA512

ad761f4b86b52989f091e323dad2ff681a0dc8de1571aa71898d002e8fab0dde431daab8e7334674502bc4caf4d1a7bfdf21a0863335d768f6e042bf627fbbb5
SSDEEP

6144:3q8UWDkUi7jDLaC7G5QGiUlSFYcH+WNEvWZR+GoqjoOLo6+WYg:RRgUG7aC7G6GQH5NFZR+GooY6Yg

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  fed5e28f5d6ca5f2e7f5a5b60cb1ccabd653fea0053a1cee440f7ee2c9262d6e
- Size
  
  370KB
- MD5
  
  a80bf9cba80fa69b7612b5947b197723
- SHA1
  
  07622081d530608ac6619b6b25b75a5a7b820cad
- SHA256
  
  fed5e28f5d6ca5f2e7f5a5b60cb1ccabd653fea0053a1cee440f7ee2c9262d6e
- SHA512
  
  ad761f4b86b52989f091e323dad2ff681a0dc8de1571aa71898d002e8fab0dde431daab8e7334674502bc4caf4d1a7bfdf21a0863335d768f6e042bf627fbbb5
- SSDEEP
  
  6144:3q8UWDkUi7jDLaC7G5QGiUlSFYcH+WNEvWZR+GoqjoOLo6+WYg:RRgUG7aC7G6GQH5NFZR+GooY6Yg
Score

8^/10

persistence
- Adds policy Run key to start application
  persistence
- Drops file in Drivers directory
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2