c5c4d8b46e8b3458216c94e167e1c0fd791461c79e61bb0dbeb1f281e2c2688c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c5c4d8b46e8b3458216c94e167e1c0fd791461c79e61bb0dbeb1f281e2c2688c
Size

14.1MB
Sample

240829-l6argaxhnp
MD5

06dd07d96b40002947fcbfbdca437493
SHA1

a71d439a47e6755adaf2024482397c074e8bae83
SHA256

c5c4d8b46e8b3458216c94e167e1c0fd791461c79e61bb0dbeb1f281e2c2688c
SHA512

bf6c0880d79bf143371cd88d518d2ece97cbf1ea791f7a19d90160e3e6934eb1e5bd6da39a71358eff48171df81672cde297ea9df2f05a94092625b6ac6efb8d
SSDEEP

393216:IKP9FCOkIn4Z877iKf6HJWsdsU6/nf8JyETBWU:jm7j8qKfA8vPf8JyE

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  c5c4d8b46e8b3458216c94e167e1c0fd791461c79e61bb0dbeb1f281e2c2688c
- Size
  
  14.1MB
- MD5
  
  06dd07d96b40002947fcbfbdca437493
- SHA1
  
  a71d439a47e6755adaf2024482397c074e8bae83
- SHA256
  
  c5c4d8b46e8b3458216c94e167e1c0fd791461c79e61bb0dbeb1f281e2c2688c
- SHA512
  
  bf6c0880d79bf143371cd88d518d2ece97cbf1ea791f7a19d90160e3e6934eb1e5bd6da39a71358eff48171df81672cde297ea9df2f05a94092625b6ac6efb8d
- SSDEEP
  
  393216:IKP9FCOkIn4Z877iKf6HJWsdsU6/nf8JyETBWU:jm7j8qKfA8vPf8JyE
Score

8^/10

persistence
- Blocklisted process makes network request
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2