5bd98fba23fa68ba6fa6883338fc14fe7010f698e25af99a12dce47350ac72ff | Triage

Sharing

General

Target

5bd98fba23fa68ba6fa6883338fc14fe7010f698e25af99a12dce47350ac72ff.exe
Size

223KB
Sample

240522-3vnydsdg3t
MD5

01e54bc1db67ee9747a9cede5d261120
SHA1

7ad8ef53070871a3b5d74d1f2ae21d86c50b0836
SHA256

5bd98fba23fa68ba6fa6883338fc14fe7010f698e25af99a12dce47350ac72ff
SHA512

1c1b59b4fad61c2e3ef9966ff5908299cfa24d00a08843a26b2c3b77066915f2862a73cc20e8c7655711d6b026428919dd52582b7741e4aa4c903d1afb5e82ae
SSDEEP

3072:Q1UFzxMbKUVAURfE+HcdpgZiT0PMCU080SrXSx8A6WoG:6YURs+HcdeZpMCU080SOx8RTG

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  5bd98fba23fa68ba6fa6883338fc14fe7010f698e25af99a12dce47350ac72ff.exe
- Size
  
  223KB
- MD5
  
  01e54bc1db67ee9747a9cede5d261120
- SHA1
  
  7ad8ef53070871a3b5d74d1f2ae21d86c50b0836
- SHA256
  
  5bd98fba23fa68ba6fa6883338fc14fe7010f698e25af99a12dce47350ac72ff
- SHA512
  
  1c1b59b4fad61c2e3ef9966ff5908299cfa24d00a08843a26b2c3b77066915f2862a73cc20e8c7655711d6b026428919dd52582b7741e4aa4c903d1afb5e82ae
- SSDEEP
  
  3072:Q1UFzxMbKUVAURfE+HcdpgZiT0PMCU080SrXSx8A6WoG:6YURs+HcdeZpMCU080SOx8RTG
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2