69e898e6c82c51e24a684453e35f47029a928775b38e913128eadd3b75e249c7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

69e898e6c82c51e24a684453e35f47029a928775b38e913128eadd3b75e249c7
Size

535KB
Sample

221020-xmtk1sadhr
MD5

473911a78898ed9ac9a287dcc42180d7
SHA1

ed9cc2c6016b92c447c12a77ffec6ec6659446a7
SHA256

69e898e6c82c51e24a684453e35f47029a928775b38e913128eadd3b75e249c7
SHA512

70057fbeb2d11fbf8eff363aad4204e73d97eee036612613666dd045c8ed7beb0bde3af8a02aee17a84f96bcc7c028b1b4aff8df23554153a1052a044a2930f5
SSDEEP

12288:iSpAMrhtDeKD9BHnc1L4o4nzGbHtP/XUhrsl1YGNkEl:iSKMtta4M34nz6fU5fak

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  69e898e6c82c51e24a684453e35f47029a928775b38e913128eadd3b75e249c7
- Size
  
  535KB
- MD5
  
  473911a78898ed9ac9a287dcc42180d7
- SHA1
  
  ed9cc2c6016b92c447c12a77ffec6ec6659446a7
- SHA256
  
  69e898e6c82c51e24a684453e35f47029a928775b38e913128eadd3b75e249c7
- SHA512
  
  70057fbeb2d11fbf8eff363aad4204e73d97eee036612613666dd045c8ed7beb0bde3af8a02aee17a84f96bcc7c028b1b4aff8df23554153a1052a044a2930f5
- SSDEEP
  
  12288:iSpAMrhtDeKD9BHnc1L4o4nzGbHtP/XUhrsl1YGNkEl:iSKMtta4M34nz6fU5fak
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2