1941d9aa0326be385466758e6267110435a121ee709b4e347d23b8d7055adfc7 | Triage

Sharing

General

Target

1941d9aa0326be385466758e6267110435a121ee709b4e347d23b8d7055adfc7
Size

30KB
Sample

220919-mz9snahfak
MD5

dd351c87f249a95f278469ef3f58e6cf
SHA1

86ba7a82a92687bc37ba021b0c339ce2d11cbac0
SHA256

1941d9aa0326be385466758e6267110435a121ee709b4e347d23b8d7055adfc7
SHA512

24b2c9d5ddbd69425401d8c713d5970a96d2b7bb23c0222f498d344f495ef0331c232483275c09b47e6311fb1c3b1a394748e76c9993591acb5c0dc8b3ecc7a6
SSDEEP

384:QlC2Em7FELdqs00Lo9AHpFUHChr/h8JrGMsPu/+3XKD6peRC8UwDQIF7hDnB6PQG:gCT54sxgA/UHUr/uxw5p6kf0hDnBga

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  1941d9aa0326be385466758e6267110435a121ee709b4e347d23b8d7055adfc7
- Size
  
  30KB
- MD5
  
  dd351c87f249a95f278469ef3f58e6cf
- SHA1
  
  86ba7a82a92687bc37ba021b0c339ce2d11cbac0
- SHA256
  
  1941d9aa0326be385466758e6267110435a121ee709b4e347d23b8d7055adfc7
- SHA512
  
  24b2c9d5ddbd69425401d8c713d5970a96d2b7bb23c0222f498d344f495ef0331c232483275c09b47e6311fb1c3b1a394748e76c9993591acb5c0dc8b3ecc7a6
- SSDEEP
  
  384:QlC2Em7FELdqs00Lo9AHpFUHChr/h8JrGMsPu/+3XKD6peRC8UwDQIF7hDnB6PQG:gCT54sxgA/UHUr/uxw5p6kf0hDnBga
Score

8^/10

persistence
- Sets DLL path for service in the registry
  persistence
- Deletes itself
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2