48fe223e0a1579a0c931b440edea83668e00671ee161f33daa27c560d8cb22a1 | Triage

Sharing

General

Target

05ee6e633e7c5eecfaed281b51bd2047
Size

44KB
Sample

231225-fdxsmshhem
MD5

05ee6e633e7c5eecfaed281b51bd2047
SHA1

305087d2a6f1515303e227230ece2942c649086c
SHA256

48fe223e0a1579a0c931b440edea83668e00671ee161f33daa27c560d8cb22a1
SHA512

0f2bd03451dee62e1c6d6ceb51e0604b1694359ec98ec49e5a06c33da460cdc43a4ef6c688942b2f3e4c70f5064e5d2f1173f231df52dc51407d3d8d4e4a0097
SSDEEP

768:IpeBtNUbOERPJCYjDFypeGgvECjugkpprSLUU9UDec:IpMtSbOEdjRypeG0ZjP8OMDec

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  05ee6e633e7c5eecfaed281b51bd2047
- Size
  
  44KB
- MD5
  
  05ee6e633e7c5eecfaed281b51bd2047
- SHA1
  
  305087d2a6f1515303e227230ece2942c649086c
- SHA256
  
  48fe223e0a1579a0c931b440edea83668e00671ee161f33daa27c560d8cb22a1
- SHA512
  
  0f2bd03451dee62e1c6d6ceb51e0604b1694359ec98ec49e5a06c33da460cdc43a4ef6c688942b2f3e4c70f5064e5d2f1173f231df52dc51407d3d8d4e4a0097
- SSDEEP
  
  768:IpeBtNUbOERPJCYjDFypeGgvECjugkpprSLUU9UDec:IpMtSbOEdjRypeG0ZjP8OMDec
Score

8^/10

persistence
- Modifies Installed Components in the registry
  persistence
- Deletes itself
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2