5acf548eeb5fd3703a5b21433f64e56836fdd2b7edec6f9fb1ce1a068a1d7cdd | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5acf548eeb5fd3703a5b21433f64e56836fdd2b7edec6f9fb1ce1a068a1d7cddN
Size

89KB
Sample

241014-jdyxgssarh
MD5

6c4aaee92641b4c9a380f339a7ca9880
SHA1

70d7a11551041628d12c399a5522ed0d43878698
SHA256

5acf548eeb5fd3703a5b21433f64e56836fdd2b7edec6f9fb1ce1a068a1d7cdd
SHA512

936a37cc75e0ca4e1a76596575d54a72ac9503c9c17827d3220a2a2f36ffc0783efb4a05914fb03aa1b0cad37384a743c8ddfafbb9e571577c8b535a2c1a8215
SSDEEP

1536:sRmgWsyz34GZFRy2siNznlnviLmANfJidBDFTeicc3lExkg8F:+moyRvRtlviyUsdSicc3lakgw

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  5acf548eeb5fd3703a5b21433f64e56836fdd2b7edec6f9fb1ce1a068a1d7cddN
- Size
  
  89KB
- MD5
  
  6c4aaee92641b4c9a380f339a7ca9880
- SHA1
  
  70d7a11551041628d12c399a5522ed0d43878698
- SHA256
  
  5acf548eeb5fd3703a5b21433f64e56836fdd2b7edec6f9fb1ce1a068a1d7cdd
- SHA512
  
  936a37cc75e0ca4e1a76596575d54a72ac9503c9c17827d3220a2a2f36ffc0783efb4a05914fb03aa1b0cad37384a743c8ddfafbb9e571577c8b535a2c1a8215
- SSDEEP
  
  1536:sRmgWsyz34GZFRy2siNznlnviLmANfJidBDFTeicc3lExkg8F:+moyRvRtlviyUsdSicc3lakgw
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence