26d76b18e1f3b1c600f130192c052d6b131d8b279b0d126eaf0aa37df286f9ae | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d56f6a828a5dd356c41584a50df2eeff.exe
Size

359KB
Sample

240102-sbmacaaeg6
MD5

d56f6a828a5dd356c41584a50df2eeff
SHA1

5cb55b84fdcb561fad73d5455e27949c552a5a19
SHA256

26d76b18e1f3b1c600f130192c052d6b131d8b279b0d126eaf0aa37df286f9ae
SHA512

016c4df50e7524cfb0ad4a404037180bbab71865b82d7d1c349b1270611ec4d74bc841b91b8b35e34517b3257aae4dbbaeb500bb7b262b764a4217bb9b41833b
SSDEEP

3072:/HBmndzN5bu8f9sWUiRp0kQI8Va3CkfUVuyelbvP5lkzmQ1o0Otw44KmfpKivFMf:/hmnZ/bFf9sWnRpprba4Yb31/do

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  d56f6a828a5dd356c41584a50df2eeff.exe
- Size
  
  359KB
- MD5
  
  d56f6a828a5dd356c41584a50df2eeff
- SHA1
  
  5cb55b84fdcb561fad73d5455e27949c552a5a19
- SHA256
  
  26d76b18e1f3b1c600f130192c052d6b131d8b279b0d126eaf0aa37df286f9ae
- SHA512
  
  016c4df50e7524cfb0ad4a404037180bbab71865b82d7d1c349b1270611ec4d74bc841b91b8b35e34517b3257aae4dbbaeb500bb7b262b764a4217bb9b41833b
- SSDEEP
  
  3072:/HBmndzN5bu8f9sWUiRp0kQI8Va3CkfUVuyelbvP5lkzmQ1o0Otw44KmfpKivFMf:/hmnZ/bFf9sWnRpprba4Yb31/do
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2