e56d21401db107c5e6c7b7e71a8236bf506cb352ff14b38495a7944e5f8a1397 | Triage

Sharing

General

Target

56bf51ba72b6aa8cf3876d17869be47a
Size

60KB
Sample

240112-r47lbaafh3
MD5

56bf51ba72b6aa8cf3876d17869be47a
SHA1

1edd5c50a648f5e42dd3e3912810c2abe6b6b8ca
SHA256

e56d21401db107c5e6c7b7e71a8236bf506cb352ff14b38495a7944e5f8a1397
SHA512

edc6302b57786253fc88e22d7223e5ec1907944b63628849c720994b337c540c661e8e7315639e054c2b1d9d31c1eea48902f0137bdae4814b4eb3d16bdc8eac
SSDEEP

1536:H4Mev4M8IeRw/gbx1WOXlh9lYTOn8ZAWm26rPrjdeh7:H4Mgue/gbxUS4xZnm2OT5A7

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  56bf51ba72b6aa8cf3876d17869be47a
- Size
  
  60KB
- MD5
  
  56bf51ba72b6aa8cf3876d17869be47a
- SHA1
  
  1edd5c50a648f5e42dd3e3912810c2abe6b6b8ca
- SHA256
  
  e56d21401db107c5e6c7b7e71a8236bf506cb352ff14b38495a7944e5f8a1397
- SHA512
  
  edc6302b57786253fc88e22d7223e5ec1907944b63628849c720994b337c540c661e8e7315639e054c2b1d9d31c1eea48902f0137bdae4814b4eb3d16bdc8eac
- SSDEEP
  
  1536:H4Mev4M8IeRw/gbx1WOXlh9lYTOn8ZAWm26rPrjdeh7:H4Mgue/gbxUS4xZnm2OT5A7
Score

8^/10

persistence
- Modifies AppInit DLL entries
  persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2