dad16f0e6f8fb3775a6625994590389f8447e3260d0bd2cb11fdba3206c4c394 | Triage

Sharing

General

Target

dad16f0e6f8fb3775a6625994590389f8447e3260d0bd2cb11fdba3206c4c394
Size

184KB
Sample

221205-elpxbshe4t
MD5

b336bd0a539ac1d003d8948af76e681a
SHA1

48de1b24a00e11434f1c449567d717878da3b6d7
SHA256

dad16f0e6f8fb3775a6625994590389f8447e3260d0bd2cb11fdba3206c4c394
SHA512

307f878c665695d70ffdbfff50d14cfb05705c089b177c7b92b6bf552af85c69a4110359fc84d93767f66200e82940cf7b102643a6ea27be1138774dfc4ea147
SSDEEP

3072:fXYP+i9Iv1c2ypEO6EauUKjqvMBucns3oE8HUMm1RzQsPSCCs+DxlO4WMOY:fXYnSv10c0WquToEAXm1ZQsKCn+fOg9

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  dad16f0e6f8fb3775a6625994590389f8447e3260d0bd2cb11fdba3206c4c394
- Size
  
  184KB
- MD5
  
  b336bd0a539ac1d003d8948af76e681a
- SHA1
  
  48de1b24a00e11434f1c449567d717878da3b6d7
- SHA256
  
  dad16f0e6f8fb3775a6625994590389f8447e3260d0bd2cb11fdba3206c4c394
- SHA512
  
  307f878c665695d70ffdbfff50d14cfb05705c089b177c7b92b6bf552af85c69a4110359fc84d93767f66200e82940cf7b102643a6ea27be1138774dfc4ea147
- SSDEEP
  
  3072:fXYP+i9Iv1c2ypEO6EauUKjqvMBucns3oE8HUMm1RzQsPSCCs+DxlO4WMOY:fXYnSv10c0WquToEAXm1ZQsKCn+fOg9
Score

8^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2