5a9546e983605e247c8ab6447e9eacabb9af69564bfb3fe35bfd7fc9d677f2eb | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5a9546e983605e247c8ab6447e9eacabb9af69564bfb3fe35bfd7fc9d677f2eb
Size

272KB
Sample

240310-z83f6acd9x
MD5

bddc91e1107c16baf52667e3b15e2188
SHA1

b448efc53366e01bb6fc4ae4c085454ef31c7fcc
SHA256

5a9546e983605e247c8ab6447e9eacabb9af69564bfb3fe35bfd7fc9d677f2eb
SHA512

7b8d4b305e0eedef4c23114365de37c0909527889fc0ea28a1a25adce8a6b6cd0f4d341fc6ecbabe8174e3c8d064a102a1a2e672b39f0cd3294314151f1517c1
SSDEEP

6144:XKT4tmb+Iahj9OByvZ6Mxv5Rar3O6B9fZSLhZmzbByvZ6Mxv5R:64AbesByvNv54B9f01ZmHByvNv5

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  5a9546e983605e247c8ab6447e9eacabb9af69564bfb3fe35bfd7fc9d677f2eb
- Size
  
  272KB
- MD5
  
  bddc91e1107c16baf52667e3b15e2188
- SHA1
  
  b448efc53366e01bb6fc4ae4c085454ef31c7fcc
- SHA256
  
  5a9546e983605e247c8ab6447e9eacabb9af69564bfb3fe35bfd7fc9d677f2eb
- SHA512
  
  7b8d4b305e0eedef4c23114365de37c0909527889fc0ea28a1a25adce8a6b6cd0f4d341fc6ecbabe8174e3c8d064a102a1a2e672b39f0cd3294314151f1517c1
- SSDEEP
  
  6144:XKT4tmb+Iahj9OByvZ6Mxv5Rar3O6B9fZSLhZmzbByvZ6Mxv5R:64AbesByvNv54B9f01ZmHByvNv5
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2