5a1cc9b2885bfd9ec974914ab87fe51ea9c0b5658e9383b61e2d9f44bd39bd1a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5a1cc9b2885bfd9ec974914ab87fe51ea9c0b5658e9383b61e2d9f44bd39bd1a
Size

81KB
Sample

240629-1heg3sxajc
MD5

49f8857e5ac88e15863be67be6772d30
SHA1

e71dfb0187f723f1250dc9f3b62021029fc76025
SHA256

5a1cc9b2885bfd9ec974914ab87fe51ea9c0b5658e9383b61e2d9f44bd39bd1a
SHA512

61a6b3423dab5a1dfb94ad88a3dddf9d8fb1d9cc9cc4122ae466b6ad448b280dd0a8aaa366c09ee8c873ac9b99866b97e05412eb9ec5a67a09f3da333c46e481
SSDEEP

1536:BaDW4PuSffP3/Y7I4vi7m4LO++/+1m6KadhYxU33HX0L:0DPfP3g7I4vi/LrCimBaH8UH30L

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  5a1cc9b2885bfd9ec974914ab87fe51ea9c0b5658e9383b61e2d9f44bd39bd1a
- Size
  
  81KB
- MD5
  
  49f8857e5ac88e15863be67be6772d30
- SHA1
  
  e71dfb0187f723f1250dc9f3b62021029fc76025
- SHA256
  
  5a1cc9b2885bfd9ec974914ab87fe51ea9c0b5658e9383b61e2d9f44bd39bd1a
- SHA512
  
  61a6b3423dab5a1dfb94ad88a3dddf9d8fb1d9cc9cc4122ae466b6ad448b280dd0a8aaa366c09ee8c873ac9b99866b97e05412eb9ec5a67a09f3da333c46e481
- SSDEEP
  
  1536:BaDW4PuSffP3/Y7I4vi7m4LO++/+1m6KadhYxU33HX0L:0DPfP3g7I4vi/LrCimBaH8UH30L
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2