f559a0209be6c237a29af3daf3f0499912c6f7db57613b08b839a36949a89cf9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f559a0209be6c237a29af3daf3f0499912c6f7db57613b08b839a36949a89cf9
Size

326KB
Sample

221020-emt8fadcc8
MD5

8030df178655df5b37e2464d85fd6a10
SHA1

aab79560c178c9bac2e779356a7929f38f9d0219
SHA256

f559a0209be6c237a29af3daf3f0499912c6f7db57613b08b839a36949a89cf9
SHA512

3ea1d3387a559e3d3ed2bf5f8f0479f2c440c25eaf253f2de51f9982a4a4ca99a1a5f3b8914fc80b4d7e54c4b07a8f6069916ae1e8855fb2ae134efaf6d9a9fd
SSDEEP

6144:5W2+YgSabPnj81kvsl+WxDpWubMA8YuksvfBX/SP1k3k:hanSdRogukyfktk3k

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  f559a0209be6c237a29af3daf3f0499912c6f7db57613b08b839a36949a89cf9
- Size
  
  326KB
- MD5
  
  8030df178655df5b37e2464d85fd6a10
- SHA1
  
  aab79560c178c9bac2e779356a7929f38f9d0219
- SHA256
  
  f559a0209be6c237a29af3daf3f0499912c6f7db57613b08b839a36949a89cf9
- SHA512
  
  3ea1d3387a559e3d3ed2bf5f8f0479f2c440c25eaf253f2de51f9982a4a4ca99a1a5f3b8914fc80b4d7e54c4b07a8f6069916ae1e8855fb2ae134efaf6d9a9fd
- SSDEEP
  
  6144:5W2+YgSabPnj81kvsl+WxDpWubMA8YuksvfBX/SP1k3k:hanSdRogukyfktk3k
Score

8^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2