d8337780edb572767733b0f87b6cb88abb4867521ff88ed6d936751496607d30 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d8337780edb572767733b0f87b6cb88abb4867521ff88ed6d936751496607d30
Size

123KB
Sample

221019-tgadeaehd2
MD5

92247e4d85fff9b76ad5c7ffedf71140
SHA1

1e87b59ed2eb7423e915c5698a18b8ba14620b14
SHA256

d8337780edb572767733b0f87b6cb88abb4867521ff88ed6d936751496607d30
SHA512

5659199a1af0f89dde1767a99664147e73fd57218e6ad7318c22452f2e9aa59a18b9aad1e7a769d3d4ea0b09b8cff4b09b5c20dcf0cc52ebca059e3e17967d5f
SSDEEP

3072:nJSyG/atcrucL87ZXRMD88emfFrPfjoUy3yo:nJSyG/YKdLMbMDxv9PfjoUmD

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  d8337780edb572767733b0f87b6cb88abb4867521ff88ed6d936751496607d30
- Size
  
  123KB
- MD5
  
  92247e4d85fff9b76ad5c7ffedf71140
- SHA1
  
  1e87b59ed2eb7423e915c5698a18b8ba14620b14
- SHA256
  
  d8337780edb572767733b0f87b6cb88abb4867521ff88ed6d936751496607d30
- SHA512
  
  5659199a1af0f89dde1767a99664147e73fd57218e6ad7318c22452f2e9aa59a18b9aad1e7a769d3d4ea0b09b8cff4b09b5c20dcf0cc52ebca059e3e17967d5f
- SSDEEP
  
  3072:nJSyG/atcrucL87ZXRMD88emfFrPfjoUy3yo:nJSyG/YKdLMbMDxv9PfjoUmD
Score

8^/10

persistence
- Sets DLL path for service in the registry
  persistence
- Deletes itself
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2