27ffdb307493613bfd05a3a02d933ba752809a7e2dce54ebee2e1aa20d5dbd62 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

27ffdb307493613bfd05a3a02d933ba752809a7e2dce54ebee2e1aa20d5dbd62
Size

9KB
Sample

221028-2wnhksagd3
MD5

0e979810fbb1a30da0a31c62faddeef1
SHA1

50fa896768baa4ece80ee7a2c66bbeb005766188
SHA256

27ffdb307493613bfd05a3a02d933ba752809a7e2dce54ebee2e1aa20d5dbd62
SHA512

84f02ddf13e289ddfc14c22a7c6144d2a7dd4ec88579aa06f94aca9f3e2e71a2a177bef23eaec146c28c7604fcf8b5ecdd6657cafde6cdeec44fb34232f95002
SSDEEP

192:lgseRITL6Skdxn4Nl1Z8PXazTUiJ7+cXwInxmRmbOap:lfebSkul1ZA6l7+NAAfY

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  27ffdb307493613bfd05a3a02d933ba752809a7e2dce54ebee2e1aa20d5dbd62
- Size
  
  9KB
- MD5
  
  0e979810fbb1a30da0a31c62faddeef1
- SHA1
  
  50fa896768baa4ece80ee7a2c66bbeb005766188
- SHA256
  
  27ffdb307493613bfd05a3a02d933ba752809a7e2dce54ebee2e1aa20d5dbd62
- SHA512
  
  84f02ddf13e289ddfc14c22a7c6144d2a7dd4ec88579aa06f94aca9f3e2e71a2a177bef23eaec146c28c7604fcf8b5ecdd6657cafde6cdeec44fb34232f95002
- SSDEEP
  
  192:lgseRITL6Skdxn4Nl1Z8PXazTUiJ7+cXwInxmRmbOap:lfebSkul1ZA6l7+NAAfY
Score

8^/10

persistence
- Adds policy Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2