50684c35bf044b41e7ed0a49aa76b83591ea10af76f99115b633244e865a53d1 | Triage

Sharing

General

Target

50684c35bf044b41e7ed0a49aa76b83591ea10af76f99115b633244e865a53d1
Size

182KB
Sample

240808-z5wjfazdnj
MD5

66b5163292b1c690f9f547412b8b5829
SHA1

0345bb3dd8cad33398e9254b581aacc812ddb405
SHA256

50684c35bf044b41e7ed0a49aa76b83591ea10af76f99115b633244e865a53d1
SHA512

7b7cb42567dd17e611e605f57f1e8d03c6e0c54be9f7330822704ee5be2d45d7d4960c83378731b026741918b3d6654c3da0635dbb98ec8876e650a02ed81d8e
SSDEEP

3072:cj+Z/5NMJI3ArgAo7nguPnVgA53+GpOc:cj2/4JI3ArgzEiV6GpOc

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  50684c35bf044b41e7ed0a49aa76b83591ea10af76f99115b633244e865a53d1
- Size
  
  182KB
- MD5
  
  66b5163292b1c690f9f547412b8b5829
- SHA1
  
  0345bb3dd8cad33398e9254b581aacc812ddb405
- SHA256
  
  50684c35bf044b41e7ed0a49aa76b83591ea10af76f99115b633244e865a53d1
- SHA512
  
  7b7cb42567dd17e611e605f57f1e8d03c6e0c54be9f7330822704ee5be2d45d7d4960c83378731b026741918b3d6654c3da0635dbb98ec8876e650a02ed81d8e
- SSDEEP
  
  3072:cj+Z/5NMJI3ArgAo7nguPnVgA53+GpOc:cj2/4JI3ArgzEiV6GpOc
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence