5b3ef8813cef59e6d7055834b01899c7f30c2ef599a343ea5d52cb1bad9499ce | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5b3ef8813cef59e6d7055834b01899c7f30c2ef599a343ea5d52cb1bad9499ce
Size

4.7MB
Sample

230518-xz1vvscd9s
MD5

3f5da85fbf0615209e4de09647f1bc79
SHA1

cdde1a4859a8d63d37b5c9eff1d534e9a19d2963
SHA256

5b3ef8813cef59e6d7055834b01899c7f30c2ef599a343ea5d52cb1bad9499ce
SHA512

58ce0ed629871c7fbf9b913b734d865a09da84aea8c3c7d4af4aa7bc5d83ebb27c657d6a207f9bb071dc352256c79649c307682dfb42c843175725f30f8ed267
SSDEEP

49152:QaTuR4VqWofCrpx0G92B3nvVg/EJCHpQ+18007buCZC9eV+o8PXjDfj:dUEEzC9G+oQXn

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  5b3ef8813cef59e6d7055834b01899c7f30c2ef599a343ea5d52cb1bad9499ce
- Size
  
  4.7MB
- MD5
  
  3f5da85fbf0615209e4de09647f1bc79
- SHA1
  
  cdde1a4859a8d63d37b5c9eff1d534e9a19d2963
- SHA256
  
  5b3ef8813cef59e6d7055834b01899c7f30c2ef599a343ea5d52cb1bad9499ce
- SHA512
  
  58ce0ed629871c7fbf9b913b734d865a09da84aea8c3c7d4af4aa7bc5d83ebb27c657d6a207f9bb071dc352256c79649c307682dfb42c843175725f30f8ed267
- SSDEEP
  
  49152:QaTuR4VqWofCrpx0G92B3nvVg/EJCHpQ+18007buCZC9eV+o8PXjDfj:dUEEzC9G+oQXn
Score

7^/10

persistence
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1