5bf791658ce2f8bb8a1be093699d71fc1e9440046e0bab1f3ce216992a61f48b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

17234f53d15d7c36fb2774a50788e139.exe
Size

6.4MB
Sample

240502-q9hcyacd82
MD5

17234f53d15d7c36fb2774a50788e139
SHA1

fa2e816106b5915a99d4bee11bd05f1dffd4c917
SHA256

5bf791658ce2f8bb8a1be093699d71fc1e9440046e0bab1f3ce216992a61f48b
SHA512

febc60aeffdb1baef619248e9db95b844f5698e7ae799d8a4316437da5af0d86a30f1391be47d7d71584d9e655a1c2ede7fb49aefba75ea7b53b1f2c214d1410
SSDEEP

98304:J6Gn9646r6VatuKLXZnatuKLXZqatuKLXZ:zalLXValLXsalLX

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  17234f53d15d7c36fb2774a50788e139.exe
- Size
  
  6.4MB
- MD5
  
  17234f53d15d7c36fb2774a50788e139
- SHA1
  
  fa2e816106b5915a99d4bee11bd05f1dffd4c917
- SHA256
  
  5bf791658ce2f8bb8a1be093699d71fc1e9440046e0bab1f3ce216992a61f48b
- SHA512
  
  febc60aeffdb1baef619248e9db95b844f5698e7ae799d8a4316437da5af0d86a30f1391be47d7d71584d9e655a1c2ede7fb49aefba75ea7b53b1f2c214d1410
- SSDEEP
  
  98304:J6Gn9646r6VatuKLXZnatuKLXZqatuKLXZ:zalLXValLXsalLX
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2