c067a1ba3753c4b444e5dda3e9fd2752e8bb45c1d8c97c83c25afbcc8a3d8f92 | Triage

Sharing

General

Target

c067a1ba3753c4b444e5dda3e9fd2752e8bb45c1d8c97c83c25afbcc8a3d8f92
Size

18KB
Sample

221003-3t87yacgem
MD5

3536d5fd38411f5d8d1c474180881ef8
SHA1

81c36e4b695535a550214daee323f0e4d03516a6
SHA256

c067a1ba3753c4b444e5dda3e9fd2752e8bb45c1d8c97c83c25afbcc8a3d8f92
SHA512

1fed767917fec652a86821e3827a869e107a4a1ac93b935b5f1815f95b36e3918fe3d35bb0b7eba2c919522bf34a7ac62a216305e8a66238457d254b921177a4
SSDEEP

384:mT+GOueAGL/km3CQDJ0fIrjD1R6zLC/iDykKMPuo:/T/T3CQDJ0fIr9czL/ykKMx

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  c067a1ba3753c4b444e5dda3e9fd2752e8bb45c1d8c97c83c25afbcc8a3d8f92
- Size
  
  18KB
- MD5
  
  3536d5fd38411f5d8d1c474180881ef8
- SHA1
  
  81c36e4b695535a550214daee323f0e4d03516a6
- SHA256
  
  c067a1ba3753c4b444e5dda3e9fd2752e8bb45c1d8c97c83c25afbcc8a3d8f92
- SHA512
  
  1fed767917fec652a86821e3827a869e107a4a1ac93b935b5f1815f95b36e3918fe3d35bb0b7eba2c919522bf34a7ac62a216305e8a66238457d254b921177a4
- SSDEEP
  
  384:mT+GOueAGL/km3CQDJ0fIrjD1R6zLC/iDykKMPuo:/T/T3CQDJ0fIr9czL/ykKMx
Score

8^/10

persistence
- Executes dropped EXE
- Sets service image path in registry
  persistence
- Deletes itself
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2