d06d804ed592436dea486beb37ad20ec83ba44ff71a3524af72b61ccd7affce7 | Triage

Sharing

General

Target

56e4c467f5c0fd924bd6d59fa3ba0895
Size

49KB
Sample

240112-tgeywsbber
MD5

56e4c467f5c0fd924bd6d59fa3ba0895
SHA1

181430094ab36885611ce648d306064a2fba5131
SHA256

d06d804ed592436dea486beb37ad20ec83ba44ff71a3524af72b61ccd7affce7
SHA512

c0df553f05a93b89f2d22b387911f11379c422e8efd8800709a9044574fc337223d6b5007d212c4e3c527fbe7075f0aa9d1a0e02d9939a75bfb2dd6fb1bf4d15
SSDEEP

768:26DW8cxflagfBG5omPIzVFtFnyZ+y+wt2vYOKvB8v:LyjBfBoPIz7t4ZV+wt2hKvuv

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  56e4c467f5c0fd924bd6d59fa3ba0895
- Size
  
  49KB
- MD5
  
  56e4c467f5c0fd924bd6d59fa3ba0895
- SHA1
  
  181430094ab36885611ce648d306064a2fba5131
- SHA256
  
  d06d804ed592436dea486beb37ad20ec83ba44ff71a3524af72b61ccd7affce7
- SHA512
  
  c0df553f05a93b89f2d22b387911f11379c422e8efd8800709a9044574fc337223d6b5007d212c4e3c527fbe7075f0aa9d1a0e02d9939a75bfb2dd6fb1bf4d15
- SSDEEP
  
  768:26DW8cxflagfBG5omPIzVFtFnyZ+y+wt2vYOKvB8v:LyjBfBoPIz7t4ZV+wt2hKvuv
Score

7^/10

persistence
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2