5cf56064038420405669c558cf894908422f66db2214db055cb49fecc5618b81 | Triage

Sharing

General

Target

279e72c35e1da22a3b54952ae27be05c
Size

58KB
Sample

231231-eryfnagefk
MD5

279e72c35e1da22a3b54952ae27be05c
SHA1

7d3c6e35b746045adde0ad6988a2b065aad270d2
SHA256

5cf56064038420405669c558cf894908422f66db2214db055cb49fecc5618b81
SHA512

7e18bd1eb6d72009b95a6f50a310b2f998b4272feed0197387056aff2d2640f4e43fd72351173f5c30d403535c5919bfe235d066a60e3b9f5a76dc28ba861d72
SSDEEP

1536:TFzC7r8NjnQXCMtjWcEMgS+nwEHW90Jz1qJSj3GgR15:hC7r8NjQLh+wEHJJzon67

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  279e72c35e1da22a3b54952ae27be05c
- Size
  
  58KB
- MD5
  
  279e72c35e1da22a3b54952ae27be05c
- SHA1
  
  7d3c6e35b746045adde0ad6988a2b065aad270d2
- SHA256
  
  5cf56064038420405669c558cf894908422f66db2214db055cb49fecc5618b81
- SHA512
  
  7e18bd1eb6d72009b95a6f50a310b2f998b4272feed0197387056aff2d2640f4e43fd72351173f5c30d403535c5919bfe235d066a60e3b9f5a76dc28ba861d72
- SSDEEP
  
  1536:TFzC7r8NjnQXCMtjWcEMgS+nwEHW90Jz1qJSj3GgR15:hC7r8NjQLh+wEHJJzon67
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2