e5a183ddd621dccbaeecb66e529710bdd129807098502a638ec37165d5f037af | Triage

Sharing

General

Target

e5a183ddd621dccbaeecb66e529710bdd129807098502a638ec37165d5f037af
Size

236KB
Sample

221204-qkm7wscc78
MD5

fb88d9d4a9d5f5ea4f11bccc53d91011
SHA1

ba5f5c1b0db1c64ba9ea133d7c4cc9621523d093
SHA256

e5a183ddd621dccbaeecb66e529710bdd129807098502a638ec37165d5f037af
SHA512

aa1d4d1fdf439fa73dd99b13d4a9daa66ba1168ba57c1d2192f0398cbcb2591ec76103d646a497c695dc2170f8230c3e07cf7b0d00541278e816be41c229b7d8
SSDEEP

3072:SeqmgHwlaazN9U3J+P0wFp+bLrt2wkkI0:+Qj9U3jwO3rt53

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  e5a183ddd621dccbaeecb66e529710bdd129807098502a638ec37165d5f037af
- Size
  
  236KB
- MD5
  
  fb88d9d4a9d5f5ea4f11bccc53d91011
- SHA1
  
  ba5f5c1b0db1c64ba9ea133d7c4cc9621523d093
- SHA256
  
  e5a183ddd621dccbaeecb66e529710bdd129807098502a638ec37165d5f037af
- SHA512
  
  aa1d4d1fdf439fa73dd99b13d4a9daa66ba1168ba57c1d2192f0398cbcb2591ec76103d646a497c695dc2170f8230c3e07cf7b0d00541278e816be41c229b7d8
- SSDEEP
  
  3072:SeqmgHwlaazN9U3J+P0wFp+bLrt2wkkI0:+Qj9U3jwO3rt53
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2