gh0strat | cbb384aa36b9ee5ac8a9f747bb6268b41bcbde71cd5a821e0d28e7dce82a3fcb | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cbb384aa36b9ee5ac8a9f747bb6268b41bcbde71cd5a821e0d28e7dce82a3fcb
Size

114KB
Sample

221003-nbvjhaddgj
MD5

68d9757fb3f643fde48dc2c9c68dd725
SHA1

0b921094b3d4687e63b9df870a986f6438669e11
SHA256

cbb384aa36b9ee5ac8a9f747bb6268b41bcbde71cd5a821e0d28e7dce82a3fcb
SHA512

d3e1ec90008ad5a701c6e3ca42be62b95246299795e7b782c1ca016823fb6d68069301a003a301340ca484c8d27c8d53b07d02bc15361056f1ef2ebb1373a69c
SSDEEP

3072:IdpgMxsdSyg4TvtcMk8Lyzb8ckivlu5KNiCbmN:Mpl2GkGMkSgb8Svlu5KNON

Score

10^/10

gh0strat persistence

Malware Config

Targets

- Target
  
  cbb384aa36b9ee5ac8a9f747bb6268b41bcbde71cd5a821e0d28e7dce82a3fcb
- Size
  
  114KB
- MD5
  
  68d9757fb3f643fde48dc2c9c68dd725
- SHA1
  
  0b921094b3d4687e63b9df870a986f6438669e11
- SHA256
  
  cbb384aa36b9ee5ac8a9f747bb6268b41bcbde71cd5a821e0d28e7dce82a3fcb
- SHA512
  
  d3e1ec90008ad5a701c6e3ca42be62b95246299795e7b782c1ca016823fb6d68069301a003a301340ca484c8d27c8d53b07d02bc15361056f1ef2ebb1373a69c
- SSDEEP
  
  3072:IdpgMxsdSyg4TvtcMk8Lyzb8ckivlu5KNiCbmN:Mpl2GkGMkSgb8Svlu5KNON
Score

8^/10

persistence
- Modifies Installed Components in the registry
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2