c1325329d28e4ddd619e3858a4e0c9d4f3a212e38d482b82708445c551ee8c2e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c1325329d28e4ddd619e3858a4e0c9d4f3a212e38d482b82708445c551ee8c2e
Size

164KB
Sample

221004-brhtesfdbj
MD5

066d779cc852e8fb9e53e6187ff22fc0
SHA1

1f533c5d1b12bbc0ad8785290bd35ec896d9c558
SHA256

c1325329d28e4ddd619e3858a4e0c9d4f3a212e38d482b82708445c551ee8c2e
SHA512

4286206c4804b796700a43e97d862dddd60107167392c20fd25cc9f40736cfea3d4364cdbd85a6a29cafee4f639e6c09e4a47ad18d11b95e1e1872ff4d440e99
SSDEEP

3072:ZliwDUWyFcB9fu+JMl2uU82Ws7f9sjboPACTQembG4hY/i1vA+k:ZldD1Yc7GIBgbzjbfLhRW+k

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  c1325329d28e4ddd619e3858a4e0c9d4f3a212e38d482b82708445c551ee8c2e
- Size
  
  164KB
- MD5
  
  066d779cc852e8fb9e53e6187ff22fc0
- SHA1
  
  1f533c5d1b12bbc0ad8785290bd35ec896d9c558
- SHA256
  
  c1325329d28e4ddd619e3858a4e0c9d4f3a212e38d482b82708445c551ee8c2e
- SHA512
  
  4286206c4804b796700a43e97d862dddd60107167392c20fd25cc9f40736cfea3d4364cdbd85a6a29cafee4f639e6c09e4a47ad18d11b95e1e1872ff4d440e99
- SSDEEP
  
  3072:ZliwDUWyFcB9fu+JMl2uU82Ws7f9sjboPACTQembG4hY/i1vA+k:ZldD1Yc7GIBgbzjbfLhRW+k
Score

8^/10

persistence
- Executes dropped EXE
- Modifies AppInit DLL entries
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2