f5a823fc96c397814e16ee189cbc0ae756bef66b565357634fc0d2fc8d1dd9fa | Triage

Sharing

General

Target

f5a823fc96c397814e16ee189cbc0ae756bef66b565357634fc0d2fc8d1dd9fa
Size

256KB
Sample

240420-fjcdwshg91
MD5

3b6df119ad819ff840dcc1fb51475ce7
SHA1

0225558c6e88d09d5c32259b902e2d208a21a4e1
SHA256

f5a823fc96c397814e16ee189cbc0ae756bef66b565357634fc0d2fc8d1dd9fa
SHA512

abc24024bb8534c89fc82a13d39495fb3f2e981a9a8fafc388de48246d059ed565cff1aac34da85cc55be1a74d703588b982ae6b4c6807fbc9714c0cdee6c6b5
SSDEEP

6144:KBEvGAuEkg4rQD85k/hQO+zrWnAdqjeOpKfduBU:KBE+worQg5W/+zrWAI5KFuU

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  f5a823fc96c397814e16ee189cbc0ae756bef66b565357634fc0d2fc8d1dd9fa
- Size
  
  256KB
- MD5
  
  3b6df119ad819ff840dcc1fb51475ce7
- SHA1
  
  0225558c6e88d09d5c32259b902e2d208a21a4e1
- SHA256
  
  f5a823fc96c397814e16ee189cbc0ae756bef66b565357634fc0d2fc8d1dd9fa
- SHA512
  
  abc24024bb8534c89fc82a13d39495fb3f2e981a9a8fafc388de48246d059ed565cff1aac34da85cc55be1a74d703588b982ae6b4c6807fbc9714c0cdee6c6b5
- SSDEEP
  
  6144:KBEvGAuEkg4rQD85k/hQO+zrWnAdqjeOpKfduBU:KBE+worQg5W/+zrWAI5KFuU
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2