ed957d315b2a4c5a170d1f75e745e636d589a0d4125d4817e109fcc11ba43a18 | Triage

Sharing

General

Target

5dbadafa558c7327a5507082bf6aa308.exe
Size

551KB
Sample

231127-vxnfmsag53
MD5

5dbadafa558c7327a5507082bf6aa308
SHA1

25247d05f7f412016c29a4aeceb4ead3543a122f
SHA256

ed957d315b2a4c5a170d1f75e745e636d589a0d4125d4817e109fcc11ba43a18
SHA512

428fd60d5026d5e15be3ea03d573900a5f3e7d6fec1facf761835d20b3cfc813d9c19b4e97ce24eccf908981063a567c7f28ad63a23a65230580cb13f9e6acb0
SSDEEP

6144:b2n4I4NZ5CPXbo92ynnZlVrtv35CPXbo92ynn8sbeWD2/U7vXVCpZ3EJHm2k5CPF:ynZmFHRFbe7chCpZ3EJHmhFHRFbeN

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  5dbadafa558c7327a5507082bf6aa308.exe
- Size
  
  551KB
- MD5
  
  5dbadafa558c7327a5507082bf6aa308
- SHA1
  
  25247d05f7f412016c29a4aeceb4ead3543a122f
- SHA256
  
  ed957d315b2a4c5a170d1f75e745e636d589a0d4125d4817e109fcc11ba43a18
- SHA512
  
  428fd60d5026d5e15be3ea03d573900a5f3e7d6fec1facf761835d20b3cfc813d9c19b4e97ce24eccf908981063a567c7f28ad63a23a65230580cb13f9e6acb0
- SSDEEP
  
  6144:b2n4I4NZ5CPXbo92ynnZlVrtv35CPXbo92ynn8sbeWD2/U7vXVCpZ3EJHm2k5CPF:ynZmFHRFbe7chCpZ3EJHmhFHRFbeN
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2