3db1fa4c89bd18108652cb1c01a7184b4b3155165bdc20cea09994e389bd82f9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

056bb0ddb8b8f3128328399b77cd53b0.exe
Size

303KB
Sample

240101-y1t95shdcj
MD5

056bb0ddb8b8f3128328399b77cd53b0
SHA1

8cf9ae835ce1e7229e0f3c04c37752188d6033b3
SHA256

3db1fa4c89bd18108652cb1c01a7184b4b3155165bdc20cea09994e389bd82f9
SHA512

90d2ae88fdcc1f5a9d14bfa2980eea89cb382dfe535dd9762ebc22ae74f42721fd3c4b0f5f60b07f8850045a59817ae03d198f213b02b2c8217a4864fa9c7b3c
SSDEEP

6144:4Emzn5o5J5CPXbo92ynnZlVrtv35CPXbo92ynn8sbeWDSpaH8m34:fmz5MFHRFbeE8mo

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  056bb0ddb8b8f3128328399b77cd53b0.exe
- Size
  
  303KB
- MD5
  
  056bb0ddb8b8f3128328399b77cd53b0
- SHA1
  
  8cf9ae835ce1e7229e0f3c04c37752188d6033b3
- SHA256
  
  3db1fa4c89bd18108652cb1c01a7184b4b3155165bdc20cea09994e389bd82f9
- SHA512
  
  90d2ae88fdcc1f5a9d14bfa2980eea89cb382dfe535dd9762ebc22ae74f42721fd3c4b0f5f60b07f8850045a59817ae03d198f213b02b2c8217a4864fa9c7b3c
- SSDEEP
  
  6144:4Emzn5o5J5CPXbo92ynnZlVrtv35CPXbo92ynn8sbeWDSpaH8m34:fmz5MFHRFbeE8mo
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2