5d2d29d25bc366bbba3ea83bea30415220f9cd781a0522b2b9bb4cfefc0ad31f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5d2d29d25bc366bbba3ea83bea30415220f9cd781a0522b2b9bb4cfefc0ad31f
Size

1.2MB
Sample

240807-18cfeayfnh
MD5

c97902aeadc976ce0869f4e2a5910279
SHA1

ab1f8518be02444b5f5bf7e6dbf3f8bb301058de
SHA256

5d2d29d25bc366bbba3ea83bea30415220f9cd781a0522b2b9bb4cfefc0ad31f
SHA512

9fcadf21e01ae39740c593ffbf73951c43ebd243c2fc2d9459b48fc6d78bed8a5226bb617852f9aed39fa41b867c3c73e8b484947b03ab8f0f4506ef72ac440a
SSDEEP

24576:Vejfi5hwq5hVW1nq5h3q5hL6X1q5h3q5h:QZt6

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  5d2d29d25bc366bbba3ea83bea30415220f9cd781a0522b2b9bb4cfefc0ad31f
- Size
  
  1.2MB
- MD5
  
  c97902aeadc976ce0869f4e2a5910279
- SHA1
  
  ab1f8518be02444b5f5bf7e6dbf3f8bb301058de
- SHA256
  
  5d2d29d25bc366bbba3ea83bea30415220f9cd781a0522b2b9bb4cfefc0ad31f
- SHA512
  
  9fcadf21e01ae39740c593ffbf73951c43ebd243c2fc2d9459b48fc6d78bed8a5226bb617852f9aed39fa41b867c3c73e8b484947b03ab8f0f4506ef72ac440a
- SSDEEP
  
  24576:Vejfi5hwq5hVW1nq5h3q5hL6X1q5h3q5h:QZt6
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence