5800efb78108f2b98f4d35b5c8615f406685e08fd33bc6bff4f6e462934bb187 | Triage

Sharing

General

Target

085cd963bbc93717f9fc85ffd1f189d3.exe
Size

335KB
Sample

231127-v4wqlaah78
MD5

085cd963bbc93717f9fc85ffd1f189d3
SHA1

242deb4716d7813a0c39bb50a487fc4fe43c1121
SHA256

5800efb78108f2b98f4d35b5c8615f406685e08fd33bc6bff4f6e462934bb187
SHA512

e1b23a2962850efeb2154451b121862356a453653642e3cc2b6da58decf70f591c94619b825aab7e2d5f8c3c7b8a14a8b7c6434d525aefacfbe36ea4307076a6
SSDEEP

6144:FZRBusXvLvwU/4qwvwU/4qvvwevwU/4q+vwk/4q7:F7B1

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  085cd963bbc93717f9fc85ffd1f189d3.exe
- Size
  
  335KB
- MD5
  
  085cd963bbc93717f9fc85ffd1f189d3
- SHA1
  
  242deb4716d7813a0c39bb50a487fc4fe43c1121
- SHA256
  
  5800efb78108f2b98f4d35b5c8615f406685e08fd33bc6bff4f6e462934bb187
- SHA512
  
  e1b23a2962850efeb2154451b121862356a453653642e3cc2b6da58decf70f591c94619b825aab7e2d5f8c3c7b8a14a8b7c6434d525aefacfbe36ea4307076a6
- SSDEEP
  
  6144:FZRBusXvLvwU/4qwvwU/4qvvwevwU/4q+vwk/4q7:F7B1
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2