05e446db7d6bfa87b489ab0a72cd2a560d57b038a4c584c00ed728f0b2ed53c7 | Triage

Sharing

General

Target

05e446db7d6bfa87b489ab0a72cd2a560d57b038a4c584c00ed728f0b2ed53c7
Size

885KB
Sample

230823-adv16ahh6v
MD5

9ae9f2541423d75bd446a187dac79eac
SHA1

9d25944c2fb81ca5cee16a35e9d592cc17034564
SHA256

05e446db7d6bfa87b489ab0a72cd2a560d57b038a4c584c00ed728f0b2ed53c7
SHA512

e7651051055d497b0c3bcddb0ffe31d7354b4a8c355f189377e3732d476e16acf26b02b910553b689ad1e8b50d4bb9ea95a2a98924341d11a10fe70a10ca7c2b
SSDEEP

6144:n90KvkRJSTDiYxFJzKZ7YQr9WOFYU2QVlY2jgyRJK8XmZgIxriG/k83FuWeArGgB:nKKv

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  05e446db7d6bfa87b489ab0a72cd2a560d57b038a4c584c00ed728f0b2ed53c7
- Size
  
  885KB
- MD5
  
  9ae9f2541423d75bd446a187dac79eac
- SHA1
  
  9d25944c2fb81ca5cee16a35e9d592cc17034564
- SHA256
  
  05e446db7d6bfa87b489ab0a72cd2a560d57b038a4c584c00ed728f0b2ed53c7
- SHA512
  
  e7651051055d497b0c3bcddb0ffe31d7354b4a8c355f189377e3732d476e16acf26b02b910553b689ad1e8b50d4bb9ea95a2a98924341d11a10fe70a10ca7c2b
- SSDEEP
  
  6144:n90KvkRJSTDiYxFJzKZ7YQr9WOFYU2QVlY2jgyRJK8XmZgIxriG/k83FuWeArGgB:nKKv
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2