553b3d184e504d3872cc5d5a61c18751ef6adb47e1c4f390b08a0b465b458cec | Triage

Sharing

Copy URL Twitter E-mail

General

Target

545b6571855a0d1fc7605b64f72ce8af.exe
Size

14KB
Sample

240111-y52j1sgfc9
MD5

545b6571855a0d1fc7605b64f72ce8af
SHA1

f64cbacf224c82bba78c3a19d6bacd58047310ab
SHA256

553b3d184e504d3872cc5d5a61c18751ef6adb47e1c4f390b08a0b465b458cec
SHA512

e3a78592f12ead8fa576161a2b3442e878448ac1629a98b35685dd3be34fe43bc7b3300c0f3d35c0b76d9cb331d114a85a1ebba18392f967f4468644fccbaf6e
SSDEEP

384:tsSiHVosE1lxFQCEUSs677p9CAnNKX+r3rdgZvRaN5B:tj6E1i4631C+r3raZvRu

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  545b6571855a0d1fc7605b64f72ce8af.exe
- Size
  
  14KB
- MD5
  
  545b6571855a0d1fc7605b64f72ce8af
- SHA1
  
  f64cbacf224c82bba78c3a19d6bacd58047310ab
- SHA256
  
  553b3d184e504d3872cc5d5a61c18751ef6adb47e1c4f390b08a0b465b458cec
- SHA512
  
  e3a78592f12ead8fa576161a2b3442e878448ac1629a98b35685dd3be34fe43bc7b3300c0f3d35c0b76d9cb331d114a85a1ebba18392f967f4468644fccbaf6e
- SSDEEP
  
  384:tsSiHVosE1lxFQCEUSs677p9CAnNKX+r3rdgZvRaN5B:tj6E1i4631C+r3raZvRu
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Deletes itself
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2