b9883a56c20cbe71d7c0519b9736fe6ae35dabd2c13ba33a9255f78f5a556f66 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b9883a56c20cbe71d7c0519b9736fe6ae35dabd2c13ba33a9255f78f5a556f66
Size

155KB
Sample

221011-t72wcaebc6
MD5

03cde9eba4591afb7e702f23038c6060
SHA1

e6d0650321440996f041e754c1aa9dbffd937956
SHA256

b9883a56c20cbe71d7c0519b9736fe6ae35dabd2c13ba33a9255f78f5a556f66
SHA512

c30eef59777db85693179eea4d05303d020cf0ce1470e73033dd871f0d7dfcedf43a791ee54c8517c9360cffe19ea71dfb86677e8bf25e0751c431729aeb06bc
SSDEEP

3072:jmVW8iTX/3RfldjjXq1+0cxxsWEL02fXcIp08Moe+2TCHaq:aM7jJlRexYTHYZMrg

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  b9883a56c20cbe71d7c0519b9736fe6ae35dabd2c13ba33a9255f78f5a556f66
- Size
  
  155KB
- MD5
  
  03cde9eba4591afb7e702f23038c6060
- SHA1
  
  e6d0650321440996f041e754c1aa9dbffd937956
- SHA256
  
  b9883a56c20cbe71d7c0519b9736fe6ae35dabd2c13ba33a9255f78f5a556f66
- SHA512
  
  c30eef59777db85693179eea4d05303d020cf0ce1470e73033dd871f0d7dfcedf43a791ee54c8517c9360cffe19ea71dfb86677e8bf25e0751c431729aeb06bc
- SSDEEP
  
  3072:jmVW8iTX/3RfldjjXq1+0cxxsWEL02fXcIp08Moe+2TCHaq:aM7jJlRexYTHYZMrg
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2