5f34ad82f828746cbc23bf94793f022ae0f32ea857cb15b24b6e468066160d66 | Triage

Sharing

General

Target

5f34ad82f828746cbc23bf94793f022ae0f32ea857cb15b24b6e468066160d66
Size

380KB
Sample

240816-3h5qdaxemq
MD5

ed8c2edea782772ad019d590be96f46c
SHA1

522962e7f1879dc0cfbf4939d5865493713c13c9
SHA256

5f34ad82f828746cbc23bf94793f022ae0f32ea857cb15b24b6e468066160d66
SHA512

f66e9be723e4a0415d7b3aa137b73d8d6e8bc0e84ff0642d90c3c5fe1465b4454f216c0c8d3c733ad1b2fceaf7e6d15e80ec5cd4a0245e01d0074e4f692da554
SSDEEP

6144:/r4nXpoCN9Otopg5tTDUZNSN58VU5tTvnVn5tTDUZNSN58Vh:D2LOtoq5t6NSN6G5tbt5t6NSN6T

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  5f34ad82f828746cbc23bf94793f022ae0f32ea857cb15b24b6e468066160d66
- Size
  
  380KB
- MD5
  
  ed8c2edea782772ad019d590be96f46c
- SHA1
  
  522962e7f1879dc0cfbf4939d5865493713c13c9
- SHA256
  
  5f34ad82f828746cbc23bf94793f022ae0f32ea857cb15b24b6e468066160d66
- SHA512
  
  f66e9be723e4a0415d7b3aa137b73d8d6e8bc0e84ff0642d90c3c5fe1465b4454f216c0c8d3c733ad1b2fceaf7e6d15e80ec5cd4a0245e01d0074e4f692da554
- SSDEEP
  
  6144:/r4nXpoCN9Otopg5tTDUZNSN58VU5tTvnVn5tTDUZNSN58Vh:D2LOtoq5t6NSN6G5tbt5t6NSN6T
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence