gh0strat | e5aff8bf4b3fd44b7b1667b2909ce4393deca1f762bd0aebefaa18b47e5a59c7 | Triage

Sharing

General

Target

e5aff8bf4b3fd44b7b1667b2909ce4393deca1f762bd0aebefaa18b47e5a59c7
Size

122KB
Sample

221204-v45cqsef3z
MD5

5b7070549292c232888fffd2a858ceb3
SHA1

eaee91a242e4cf7731e3f1527ad2eff3f4ddf97f
SHA256

e5aff8bf4b3fd44b7b1667b2909ce4393deca1f762bd0aebefaa18b47e5a59c7
SHA512

e47d7632fba256b2935eade7c82d0d2a4671947ce076144763fb2531b51b7f9c187169f130e5ce6e900cafedd6d63098d84b5dcad8c8430ee587f8d279a44b58
SSDEEP

3072:of9xHwm1PXBmXZFeA28pMGEdePl9dehiv80P80Cnp8d6R:wdwaWB28adeP/deUv80P80Ap8a

Score

10^/10

gh0strat persistence

Malware Config

Targets

- Target
  
  e5aff8bf4b3fd44b7b1667b2909ce4393deca1f762bd0aebefaa18b47e5a59c7
- Size
  
  122KB
- MD5
  
  5b7070549292c232888fffd2a858ceb3
- SHA1
  
  eaee91a242e4cf7731e3f1527ad2eff3f4ddf97f
- SHA256
  
  e5aff8bf4b3fd44b7b1667b2909ce4393deca1f762bd0aebefaa18b47e5a59c7
- SHA512
  
  e47d7632fba256b2935eade7c82d0d2a4671947ce076144763fb2531b51b7f9c187169f130e5ce6e900cafedd6d63098d84b5dcad8c8430ee587f8d279a44b58
- SSDEEP
  
  3072:of9xHwm1PXBmXZFeA28pMGEdePl9dehiv80P80Cnp8d6R:wdwaWB28adeP/deUv80P80Ap8a
Score

8^/10

persistence
- Modifies Installed Components in the registry
  persistence
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2