984273d74f1d79bfac1bbd5a1222ffed7b6e6f0c7f30811ef202ad9aec84dcc2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

984273d74f1d79bfac1bbd5a1222ffed7b6e6f0c7f30811ef202ad9aec84dcc2
Size

33KB
Sample

220919-ldw41aedek
MD5

c88c2994df59862cc69bcb93b92b4533
SHA1

21cfcf76373738c37a089c39057b1adb25ef6ac0
SHA256

984273d74f1d79bfac1bbd5a1222ffed7b6e6f0c7f30811ef202ad9aec84dcc2
SHA512

a1d3e7196b3048dffba1853f3ea5ff2eb20c9c74ff4fba5fdcc74693b8efc9c3354fba08fa72fb344bfb3ea2b8533f4b0a500644f4d435ce7b88b183fd4c7114
SSDEEP

768:h8nVmpW7ApGpMffJDP9q7V2SpWp/ktSfDbYQU60ocIq:h+mpUAMpMf1P9UJk/3LbTU60ocIq

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  984273d74f1d79bfac1bbd5a1222ffed7b6e6f0c7f30811ef202ad9aec84dcc2
- Size
  
  33KB
- MD5
  
  c88c2994df59862cc69bcb93b92b4533
- SHA1
  
  21cfcf76373738c37a089c39057b1adb25ef6ac0
- SHA256
  
  984273d74f1d79bfac1bbd5a1222ffed7b6e6f0c7f30811ef202ad9aec84dcc2
- SHA512
  
  a1d3e7196b3048dffba1853f3ea5ff2eb20c9c74ff4fba5fdcc74693b8efc9c3354fba08fa72fb344bfb3ea2b8533f4b0a500644f4d435ce7b88b183fd4c7114
- SSDEEP
  
  768:h8nVmpW7ApGpMffJDP9q7V2SpWp/ktSfDbYQU60ocIq:h+mpUAMpMf1P9UJk/3LbTU60ocIq
Score

7^/10

persistence
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2