2111c3418dcf68145dbb403f85cf1dec386c314dd3ccfd1d122580e39f1f7f79 | Triage

Sharing

General

Target

5aa2fc69b0eddc07e01b29205b3c2cfe.exe
Size

82KB
Sample

240426-g5396saf8t
MD5

5aa2fc69b0eddc07e01b29205b3c2cfe
SHA1

945d03326c5997ee445462c5d246d61a75d1d483
SHA256

2111c3418dcf68145dbb403f85cf1dec386c314dd3ccfd1d122580e39f1f7f79
SHA512

922f4c155ae6c93ddc0c1b4b76ebb9b79bf2e436ba9aa6aa7e9327625765520328750c5bda8bbcd920fb91e1954e44246912eeec4d0cd822f2bfd354ff7816fb
SSDEEP

1536:BreVGGMIO5i9EVpJm2L7tpm6+wDSmQFN6TiN1sJtvQu:BregIOPXxpm6tm7N6TO1SpD

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  5aa2fc69b0eddc07e01b29205b3c2cfe.exe
- Size
  
  82KB
- MD5
  
  5aa2fc69b0eddc07e01b29205b3c2cfe
- SHA1
  
  945d03326c5997ee445462c5d246d61a75d1d483
- SHA256
  
  2111c3418dcf68145dbb403f85cf1dec386c314dd3ccfd1d122580e39f1f7f79
- SHA512
  
  922f4c155ae6c93ddc0c1b4b76ebb9b79bf2e436ba9aa6aa7e9327625765520328750c5bda8bbcd920fb91e1954e44246912eeec4d0cd822f2bfd354ff7816fb
- SSDEEP
  
  1536:BreVGGMIO5i9EVpJm2L7tpm6+wDSmQFN6TiN1sJtvQu:BregIOPXxpm6tm7N6TO1SpD
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2