1419449029f5cc7233d9a291fa6133bc9ddc5f55142687a664616a0ad9168822 | Triage

Sharing

General

Target

1419449029f5cc7233d9a291fa6133bc9ddc5f55142687a664616a0ad9168822
Size

471KB
Sample

221002-rhfkpsaba8
MD5

6722ea5ab3944ede0f14ae67ca6297b6
SHA1

ab996f267c92311c3836391111f1d7c0adc0ed96
SHA256

1419449029f5cc7233d9a291fa6133bc9ddc5f55142687a664616a0ad9168822
SHA512

33f65ea8eb66c5944232239ef74e65678a896e57a8f9122e3be40a943db44f0f6c21875da36b347961ee0395444a9e46ecc8c7133d8a5e23f2b195fe030ee3be
SSDEEP

6144:KPOC5HZ1vVb4e7mlK5MpQtdlpeiSp4RVlPfGrROMgmNZH29wO/Ua42:KPTHZb4e7mlK5MpQtbKKx6NZW4a42

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  1419449029f5cc7233d9a291fa6133bc9ddc5f55142687a664616a0ad9168822
- Size
  
  471KB
- MD5
  
  6722ea5ab3944ede0f14ae67ca6297b6
- SHA1
  
  ab996f267c92311c3836391111f1d7c0adc0ed96
- SHA256
  
  1419449029f5cc7233d9a291fa6133bc9ddc5f55142687a664616a0ad9168822
- SHA512
  
  33f65ea8eb66c5944232239ef74e65678a896e57a8f9122e3be40a943db44f0f6c21875da36b347961ee0395444a9e46ecc8c7133d8a5e23f2b195fe030ee3be
- SSDEEP
  
  6144:KPOC5HZ1vVb4e7mlK5MpQtdlpeiSp4RVlPfGrROMgmNZH29wO/Ua42:KPTHZb4e7mlK5MpQtbKKx6NZW4a42
Score

8^/10

persistence
- Adds policy Run key to start application
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2