40e3016c9afdab2712d3b064d69e4b9873efa3e74220e6b7c66162933b7ac979 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

40e3016c9afdab2712d3b064d69e4b9873efa3e74220e6b7c66162933b7ac979
Size

281KB
Sample

221004-g897wsffg3
MD5

58fac5ae33440272a03ccc4fcc534910
SHA1

67bf54db57a2df937e6eb6fb95b9d3fcb0a990d3
SHA256

40e3016c9afdab2712d3b064d69e4b9873efa3e74220e6b7c66162933b7ac979
SHA512

c59c01b9601a72ce584b09c5f35df4fe03bd06e19e806e5be296d7e7c4178eb21996fcd1ec4e71e82189af8adef778171f3c31334204aa1f13ed70a3b427503d
SSDEEP

3072:ULXRiiVM2EBTZ0y+UdPdSWz1Cf6dW9m0+xSV/leGePZhh0q+DlE2bW6PvqrDvFW:QXciVdITZ0hWJFPj52lOHvM

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  40e3016c9afdab2712d3b064d69e4b9873efa3e74220e6b7c66162933b7ac979
- Size
  
  281KB
- MD5
  
  58fac5ae33440272a03ccc4fcc534910
- SHA1
  
  67bf54db57a2df937e6eb6fb95b9d3fcb0a990d3
- SHA256
  
  40e3016c9afdab2712d3b064d69e4b9873efa3e74220e6b7c66162933b7ac979
- SHA512
  
  c59c01b9601a72ce584b09c5f35df4fe03bd06e19e806e5be296d7e7c4178eb21996fcd1ec4e71e82189af8adef778171f3c31334204aa1f13ed70a3b427503d
- SSDEEP
  
  3072:ULXRiiVM2EBTZ0y+UdPdSWz1Cf6dW9m0+xSV/leGePZhh0q+DlE2bW6PvqrDvFW:QXciVdITZ0hWJFPj52lOHvM
Score

8^/10

persistence
- Executes dropped EXE
- Modifies AppInit DLL entries
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2