51861faa58ed7b42819c9a0ab494bd446434b8b4ccb9285678ec2b796723d219 | Triage

Sharing

General

Target

51861faa58ed7b42819c9a0ab494bd446434b8b4ccb9285678ec2b796723d219
Size

80KB
Sample

240530-1nttysbg59
MD5

e47db20e20cf83fe4b732d3f1157f169
SHA1

ea68726b96d028d197f2b33bef33f77fbfc01ddf
SHA256

51861faa58ed7b42819c9a0ab494bd446434b8b4ccb9285678ec2b796723d219
SHA512

d9a85d551827cbd473b8c56d1a5897e2f9d7db12ac663eed253c048281598d2b37bef168540c3d12a35c369eeb97be4aa64f49bbd4abc0ab4d9f1ae2022c3507
SSDEEP

1536:tF4JhtbieQXqcWtx/GQBXbt2jVno25Ged/EyjbjRQAgRJJ5R2xOSC4BG:+t+eQXRWDuQBXbteoK7dveDrJ5wxO344

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  51861faa58ed7b42819c9a0ab494bd446434b8b4ccb9285678ec2b796723d219
- Size
  
  80KB
- MD5
  
  e47db20e20cf83fe4b732d3f1157f169
- SHA1
  
  ea68726b96d028d197f2b33bef33f77fbfc01ddf
- SHA256
  
  51861faa58ed7b42819c9a0ab494bd446434b8b4ccb9285678ec2b796723d219
- SHA512
  
  d9a85d551827cbd473b8c56d1a5897e2f9d7db12ac663eed253c048281598d2b37bef168540c3d12a35c369eeb97be4aa64f49bbd4abc0ab4d9f1ae2022c3507
- SSDEEP
  
  1536:tF4JhtbieQXqcWtx/GQBXbt2jVno25Ged/EyjbjRQAgRJJ5R2xOSC4BG:+t+eQXRWDuQBXbteoK7dveDrJ5wxO344
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2