5ead8e4d387ef4396762fc5f9c3f3e7e2e53264a319797892ae4b0681f238e88 | Triage

Sharing

General

Target

5ead8e4d387ef4396762fc5f9c3f3e7e2e53264a319797892ae4b0681f238e88
Size

1024KB
Sample

240825-19bv9syckg
MD5

48062e09dc7b10a877058f9969d4a481
SHA1

1bc776ce637ea5058ee4317dafcbf39d2e134662
SHA256

5ead8e4d387ef4396762fc5f9c3f3e7e2e53264a319797892ae4b0681f238e88
SHA512

6d383b0043f3e3567c858821b84113dbf95761ba7ed966676a3c139ed16d8eafd6007ea49cf1b68ec955955254238936504c86f6e0883a1985bd74d42ca82db0
SSDEEP

12288:xUhkY660fIaDZkY660f8jTK/XhdAwlt01PBExKN4P6IfKTLR+6CwUkEoH:xIgsaDZgQjGkwlks/6HnEO

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  5ead8e4d387ef4396762fc5f9c3f3e7e2e53264a319797892ae4b0681f238e88
- Size
  
  1024KB
- MD5
  
  48062e09dc7b10a877058f9969d4a481
- SHA1
  
  1bc776ce637ea5058ee4317dafcbf39d2e134662
- SHA256
  
  5ead8e4d387ef4396762fc5f9c3f3e7e2e53264a319797892ae4b0681f238e88
- SHA512
  
  6d383b0043f3e3567c858821b84113dbf95761ba7ed966676a3c139ed16d8eafd6007ea49cf1b68ec955955254238936504c86f6e0883a1985bd74d42ca82db0
- SSDEEP
  
  12288:xUhkY660fIaDZkY660f8jTK/XhdAwlt01PBExKN4P6IfKTLR+6CwUkEoH:xIgsaDZgQjGkwlks/6HnEO
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence