0634bf5a12e1d48bafffda8507085b4c94238d6c9963259f4e5ad5ee8edc99fe | Triage

Sharing

General

Target

0634bf5a12e1d48bafffda8507085b4c94238d6c9963259f4e5ad5ee8edc99fe
Size

909KB
Sample

240521-wx32rsea4w
MD5

1c81f5465d97e10ca451a78020ba333c
SHA1

52314a58c9ed770c4648d0e53659c211c0e9897b
SHA256

0634bf5a12e1d48bafffda8507085b4c94238d6c9963259f4e5ad5ee8edc99fe
SHA512

5b60c9b6d5a68ea3c62db43084e706fef71a709eece6577e5c05b2a6ae0a9b0755693791c00ea7955d21c1516ab77d972234d04767f082fe008d5cd1fafa1603
SSDEEP

3072:MGjhaq5iL0beJQZt32wLji5DlsODxRPNDkjJHzW9hUd56JsuBSjwA2i1vP2i1a1O:Hha8iAx+1zwjJHd6vB/ANMf1vCco2I9

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  0634bf5a12e1d48bafffda8507085b4c94238d6c9963259f4e5ad5ee8edc99fe
- Size
  
  909KB
- MD5
  
  1c81f5465d97e10ca451a78020ba333c
- SHA1
  
  52314a58c9ed770c4648d0e53659c211c0e9897b
- SHA256
  
  0634bf5a12e1d48bafffda8507085b4c94238d6c9963259f4e5ad5ee8edc99fe
- SHA512
  
  5b60c9b6d5a68ea3c62db43084e706fef71a709eece6577e5c05b2a6ae0a9b0755693791c00ea7955d21c1516ab77d972234d04767f082fe008d5cd1fafa1603
- SSDEEP
  
  3072:MGjhaq5iL0beJQZt32wLji5DlsODxRPNDkjJHzW9hUd56JsuBSjwA2i1vP2i1a1O:Hha8iAx+1zwjJHd6vB/ANMf1vCco2I9
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2