1d7b0f9af9d1f5e8a923de89062e1f356cc68f9961dc1d3790cff355451a8508 | Triage

Sharing

General

Target

1d7b0f9af9d1f5e8a923de89062e1f356cc68f9961dc1d3790cff355451a8508
Size

64KB
Sample

221002-kwpbfahfbj
MD5

7212eeaca3d3e8a17e8ade1c2a833014
SHA1

47773d01925d324b99d83409052b4d95717b9615
SHA256

1d7b0f9af9d1f5e8a923de89062e1f356cc68f9961dc1d3790cff355451a8508
SHA512

dea16109dc210799ad7ef21916f37374bb9260f59b06516c5fc2fc81c93415e24671abafd79c1e5b555291281509931f142270a80fc907e20dd6fc8d71f850f9
SSDEEP

768:pY4bS8HXE/GfSN9i1Yn1vkJ9wfDoTZnhuQqrZqrFriClyTyj69Cy4PCvghITvlMX:pYiv0efSniwkJ9wroT1QZMpGClncl

Score

8^/10

evasion persistence

Malware Config

Targets

- Target
  
  1d7b0f9af9d1f5e8a923de89062e1f356cc68f9961dc1d3790cff355451a8508
- Size
  
  64KB
- MD5
  
  7212eeaca3d3e8a17e8ade1c2a833014
- SHA1
  
  47773d01925d324b99d83409052b4d95717b9615
- SHA256
  
  1d7b0f9af9d1f5e8a923de89062e1f356cc68f9961dc1d3790cff355451a8508
- SHA512
  
  dea16109dc210799ad7ef21916f37374bb9260f59b06516c5fc2fc81c93415e24671abafd79c1e5b555291281509931f142270a80fc907e20dd6fc8d71f850f9
- SSDEEP
  
  768:pY4bS8HXE/GfSN9i1Yn1vkJ9wfDoTZnhuQqrZqrFriClyTyj69Cy4PCvghITvlMX:pYiv0efSniwkJ9wroT1QZMpGClncl
Score

8^/10

evasion persistence
- Disables RegEdit via registry modification
  evasion
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasionpersistence

behavioral2

evasionpersistence