5b78dff55814e85140860f5e50cad865da3fe537b9139237e07860811aea29c5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5b78dff55814e85140860f5e50cad865da3fe537b9139237e07860811aea29c5
Size

64KB
Sample

240415-1hnqrabb7y
MD5

00641e3a456fc1f11edd9ab7aa4598d0
SHA1

d4356bf7bc72b55f2aa0ef02659d816bb6395731
SHA256

5b78dff55814e85140860f5e50cad865da3fe537b9139237e07860811aea29c5
SHA512

40fccc1f233fb1710505275497bc54bb9d55349b57ec2d4ef1db78ccc970d140cc4021ea1a0997b54b956804cc6b02a824ce85b7cc21cda0ca354f75dd560b74
SSDEEP

1536:Z9r0eFlRIlsbDGp/gt5dehd4+UXruCHcpzt/Idn:vhlRIhLhdppFwn

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  5b78dff55814e85140860f5e50cad865da3fe537b9139237e07860811aea29c5
- Size
  
  64KB
- MD5
  
  00641e3a456fc1f11edd9ab7aa4598d0
- SHA1
  
  d4356bf7bc72b55f2aa0ef02659d816bb6395731
- SHA256
  
  5b78dff55814e85140860f5e50cad865da3fe537b9139237e07860811aea29c5
- SHA512
  
  40fccc1f233fb1710505275497bc54bb9d55349b57ec2d4ef1db78ccc970d140cc4021ea1a0997b54b956804cc6b02a824ce85b7cc21cda0ca354f75dd560b74
- SSDEEP
  
  1536:Z9r0eFlRIlsbDGp/gt5dehd4+UXruCHcpzt/Idn:vhlRIhLhdppFwn
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2