b5863a29eb4192f190c976bb01dc5eb1fce34cc971502998bf3020f66efebc5e | Triage

Sharing

General

Target

b5863a29eb4192f190c976bb01dc5eb1fce34cc971502998bf3020f66efebc5e
Size

208KB
Sample

240308-2fj58aab21
MD5

e4392aecd8b392d529aa051d1419bbcc
SHA1

70b722df216c32bc6375dcf20ad19756f5b4d3cd
SHA256

b5863a29eb4192f190c976bb01dc5eb1fce34cc971502998bf3020f66efebc5e
SHA512

32445ac10a4267974c09598b8008cfff5a387ec2424c4605572c155b3edf7ee6d56c7a8c8b7e858e5701e03cdfbd231c05f493607554851f3f271f1f1a4ed9fd
SSDEEP

3072:EyiGcEjFO0SWHDIbznTdQGPxj6+oXO56hKpi9poF5aY6+oocpGHHQnNJuIb:EyiCjFseIbzdPxO+Eu6QnFw5+0pU8b

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  b5863a29eb4192f190c976bb01dc5eb1fce34cc971502998bf3020f66efebc5e
- Size
  
  208KB
- MD5
  
  e4392aecd8b392d529aa051d1419bbcc
- SHA1
  
  70b722df216c32bc6375dcf20ad19756f5b4d3cd
- SHA256
  
  b5863a29eb4192f190c976bb01dc5eb1fce34cc971502998bf3020f66efebc5e
- SHA512
  
  32445ac10a4267974c09598b8008cfff5a387ec2424c4605572c155b3edf7ee6d56c7a8c8b7e858e5701e03cdfbd231c05f493607554851f3f271f1f1a4ed9fd
- SSDEEP
  
  3072:EyiGcEjFO0SWHDIbznTdQGPxj6+oXO56hKpi9poF5aY6+oocpGHHQnNJuIb:EyiCjFseIbzdPxO+Eu6QnFw5+0pU8b
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2