15228ef73b36e5a603fce43455a11c51b94a01206e959fd6854546d07500c8dd | Triage

Sharing

General

Target

15228ef73b36e5a603fce43455a11c51b94a01206e959fd6854546d07500c8dd
Size

3.2MB
Sample

231118-mdvfvadf97
MD5

2bacee17178668e540df21d2a1c6a62e
SHA1

c5f98c43aa2ce6e503776a81226aecfbf5b1b775
SHA256

15228ef73b36e5a603fce43455a11c51b94a01206e959fd6854546d07500c8dd
SHA512

59a5b04f8945d06ba43e8735d3f3656332d63d868a12fe858313c6edbd57fd923d80781f9df186cdec0a1df8717fc545df4f47560a6cde087a8991f1eba8ddc9
SSDEEP

98304:KisCekQvyBC9c4OGezjDquHWRdmU/D0FMe64ditPYEHycS:fsZT9sWPQTXdihYEHyc

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  15228ef73b36e5a603fce43455a11c51b94a01206e959fd6854546d07500c8dd
- Size
  
  3.2MB
- MD5
  
  2bacee17178668e540df21d2a1c6a62e
- SHA1
  
  c5f98c43aa2ce6e503776a81226aecfbf5b1b775
- SHA256
  
  15228ef73b36e5a603fce43455a11c51b94a01206e959fd6854546d07500c8dd
- SHA512
  
  59a5b04f8945d06ba43e8735d3f3656332d63d868a12fe858313c6edbd57fd923d80781f9df186cdec0a1df8717fc545df4f47560a6cde087a8991f1eba8ddc9
- SSDEEP
  
  98304:KisCekQvyBC9c4OGezjDquHWRdmU/D0FMe64ditPYEHycS:fsZT9sWPQTXdihYEHyc
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2