5d00eaf75217bc5fe6fc6923bad3bd3a5248dfcfb59969a3a95bd82972713442 | Triage

Sharing

General

Target

e7a3928badee5f2ec085fd773944b75d.bin
Size

71.5MB
Sample

240201-dyz3dsace6
MD5

a9bc58a86b36c61dad046501c611a0f0
SHA1

5b6db9807554b705667b4226fdbb4f73e7b99d2f
SHA256

5d00eaf75217bc5fe6fc6923bad3bd3a5248dfcfb59969a3a95bd82972713442
SHA512

d606f03892dcc641adae859d12e8eefd118698284267e512f65b669eab187f83ab32eff9cbbb8973544980262edeae38ab5f0a98fcdec99dcaba4d6c61aacc9f
SSDEEP

1572864:MHeOe/myWqT2/BNpVYdaI72/xuKLEzOv/FhClqKig83ntuK9sUMyZFmy7JVhf:MXeOZK2XHIa/oKQzOzP53n8K9TMeJVhf

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  Maxar.dll
- Size
  
  182.5MB
- MD5
  
  6fd5d31d607a212c6f7651c79e7655a3
- SHA1
  
  ddd18e208aff7b00a46e06f8d9485f81ff4221ea
- SHA256
  
  364275326bbfc4a3b89233dabdaf3230a3d149ab774678342a40644ad9f8d614
- SHA512
  
  ab9f749ee6eb0c9c2fd0f9f3f55be3d17835a1285af72f2dc1eef74a6191a6a988345b556d0ff76f9a59585e3cd56a724bec4389418b4748b2f72b7128b949a7
- SSDEEP
  
  786432:fcfVFSPTqkFfux1Kq0DsqEnz1XSY3v9XSIsmhidXposvHH7QdPA0mgErPrzlcEsp:EfzSPTqkGM16zsY3hSCKWsf7QggmzKEG
Score

7^/10

persistence
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2