5d36e024079b34f5f5ab43381ec3e7beae83bc799142d1c968b061d77383e6fc | Triage

Sharing

General

Target

5d36e024079b34f5f5ab43381ec3e7beae83bc799142d1c968b061d77383e6fc
Size

412KB
Sample

240409-zdn1aaad46
MD5

713a6da42ac040a23f18459a5f78631a
SHA1

6457b000ca3493ddae029db793e812a702829bb4
SHA256

5d36e024079b34f5f5ab43381ec3e7beae83bc799142d1c968b061d77383e6fc
SHA512

3ae5cabe07bd14d84a24d739172403634cfd43efcb8ce8ee71268f80b3318648f4ae2104f7883314185c4e55f021a5d23dee39ecbb3be9c18dbf53fe7c185ccf
SSDEEP

6144:tJ7qvCdmyoBB5CMHP7RQmfMishe4Zgufq+cREyR/yfjoshaphaiB00:f7qvbCMHieikLB

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  5d36e024079b34f5f5ab43381ec3e7beae83bc799142d1c968b061d77383e6fc
- Size
  
  412KB
- MD5
  
  713a6da42ac040a23f18459a5f78631a
- SHA1
  
  6457b000ca3493ddae029db793e812a702829bb4
- SHA256
  
  5d36e024079b34f5f5ab43381ec3e7beae83bc799142d1c968b061d77383e6fc
- SHA512
  
  3ae5cabe07bd14d84a24d739172403634cfd43efcb8ce8ee71268f80b3318648f4ae2104f7883314185c4e55f021a5d23dee39ecbb3be9c18dbf53fe7c185ccf
- SSDEEP
  
  6144:tJ7qvCdmyoBB5CMHP7RQmfMishe4Zgufq+cREyR/yfjoshaphaiB00:f7qvbCMHieikLB
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2