a80be827637fba3f53db67de6d2af223a53e154f8b505608ee8b6e66c3ff22fa | Triage

Sharing

General

Target

a80be827637fba3f53db67de6d2af223a53e154f8b505608ee8b6e66c3ff22fa
Size

22KB
Sample

220919-l8d7nscaa8
MD5

f5c212313d5f94661b3c77e5a45731f0
SHA1

664a7d6ae2810d7c8032d9d91c926d0ec98f1f41
SHA256

a80be827637fba3f53db67de6d2af223a53e154f8b505608ee8b6e66c3ff22fa
SHA512

36aa18e6b78ff884266efe5e12331564e414adea81a0324261636d71b37228c47b579385aed183a84577da26a4e99cdb9acc8a0941f0fa4f8dfdb94571f79a36
SSDEEP

384:O9Iv76z12Qf41sJFSEh7GzInz808tUy6wqdSGgIbKZJo8YFGqP5vXWvwWlz:O966h2lsJXh7GEY08tgdZgIWPYFp5vc

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  a80be827637fba3f53db67de6d2af223a53e154f8b505608ee8b6e66c3ff22fa
- Size
  
  22KB
- MD5
  
  f5c212313d5f94661b3c77e5a45731f0
- SHA1
  
  664a7d6ae2810d7c8032d9d91c926d0ec98f1f41
- SHA256
  
  a80be827637fba3f53db67de6d2af223a53e154f8b505608ee8b6e66c3ff22fa
- SHA512
  
  36aa18e6b78ff884266efe5e12331564e414adea81a0324261636d71b37228c47b579385aed183a84577da26a4e99cdb9acc8a0941f0fa4f8dfdb94571f79a36
- SSDEEP
  
  384:O9Iv76z12Qf41sJFSEh7GzInz808tUy6wqdSGgIbKZJo8YFGqP5vXWvwWlz:O966h2lsJXh7GEY08tgdZgIWPYFp5vc
Score

8^/10

persistence
- Drops file in Drivers directory
- Sets DLL path for service in the registry
  persistence
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2