04f89f863a905fc3e7e34f64926ade178aa16f9e561ef9d61b43b66fb06f2384 | Triage

Sharing

General

Target

04f89f863a905fc3e7e34f64926ade178aa16f9e561ef9d61b43b66fb06f2384
Size

236KB
Sample

221002-rpf5tabhhp
MD5

65a1ca4e10096ad5195fcadd628dd2ab
SHA1

53f958eeddbae253d6f8e4082ac1f24d7d1a8e0e
SHA256

04f89f863a905fc3e7e34f64926ade178aa16f9e561ef9d61b43b66fb06f2384
SHA512

6f00e764efa99366feafd7c86ae79295b0e8222b0f90554eb116cc7a7d9c0b6a9f128bde23fd072c290081ea7a43ca5b36ab5ecb0326708572d8bcd2465f51cb
SSDEEP

1536:Iguo2K86vta10RJQYPIHL+D5IWhxRh/Ci4ucg3/+k5ltr+DRPG8Gz7wk+cQvMB:Go256vS0RJAL+lHPKi40+66iwkD0O

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  04f89f863a905fc3e7e34f64926ade178aa16f9e561ef9d61b43b66fb06f2384
- Size
  
  236KB
- MD5
  
  65a1ca4e10096ad5195fcadd628dd2ab
- SHA1
  
  53f958eeddbae253d6f8e4082ac1f24d7d1a8e0e
- SHA256
  
  04f89f863a905fc3e7e34f64926ade178aa16f9e561ef9d61b43b66fb06f2384
- SHA512
  
  6f00e764efa99366feafd7c86ae79295b0e8222b0f90554eb116cc7a7d9c0b6a9f128bde23fd072c290081ea7a43ca5b36ab5ecb0326708572d8bcd2465f51cb
- SSDEEP
  
  1536:Iguo2K86vta10RJQYPIHL+D5IWhxRh/Ci4ucg3/+k5ltr+DRPG8Gz7wk+cQvMB:Go256vS0RJAL+lHPKi40+66iwkD0O
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2