5d56016ec1aa8b58b98417895d593245c5fb80b1efc11e6a97836f4138161bf7 | Triage

Sharing

General

Target

5d56016ec1aa8b58b98417895d593245c5fb80b1efc11e6a97836f4138161bf7
Size

194KB
Sample

240502-2a3elsab29
MD5

bc4822b90049dd0abdfedade59924c73
SHA1

c66f841b40ceefd48ff194bcc6131201bc006333
SHA256

5d56016ec1aa8b58b98417895d593245c5fb80b1efc11e6a97836f4138161bf7
SHA512

960815c09a5da26673568743c9730a7ae6b38adfdf7cdb8f9a6d74933a03299993b97204799d94ff4fb61dcb400b25b9d788432bdd498e965e5bcaa87c89832b
SSDEEP

6144:yh1aqPdmydSfUNRbCeKpNYxWlJ7mkD6pNY:wfPd

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  5d56016ec1aa8b58b98417895d593245c5fb80b1efc11e6a97836f4138161bf7
- Size
  
  194KB
- MD5
  
  bc4822b90049dd0abdfedade59924c73
- SHA1
  
  c66f841b40ceefd48ff194bcc6131201bc006333
- SHA256
  
  5d56016ec1aa8b58b98417895d593245c5fb80b1efc11e6a97836f4138161bf7
- SHA512
  
  960815c09a5da26673568743c9730a7ae6b38adfdf7cdb8f9a6d74933a03299993b97204799d94ff4fb61dcb400b25b9d788432bdd498e965e5bcaa87c89832b
- SSDEEP
  
  6144:yh1aqPdmydSfUNRbCeKpNYxWlJ7mkD6pNY:wfPd
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2