46cea6ffffc2897d0148e9835f76b42049eb0fd175a7ab1923fc482f8c97ac5d | Triage

Sharing

General

Target

46cea6ffffc2897d0148e9835f76b42049eb0fd175a7ab1923fc482f8c97ac5d
Size

172KB
Sample

221029-2pe8maacf8
MD5

559e8c01b45a9f12aaf12533b10f07a0
SHA1

641da6074d29ac69a2b2a651c639172e495f6bc0
SHA256

46cea6ffffc2897d0148e9835f76b42049eb0fd175a7ab1923fc482f8c97ac5d
SHA512

fb909b3d1a191502cf7670971a933cbb140ab36385c2711665797a7650cd9b373ce8aaa74b68b45dd68d5570fd192d504a4089d943ace4e9e4d7ef70b7cb3edf
SSDEEP

1536:b1RRpYd5935oPIZHoqCBtAupRvyNPvlvNWWBrLLhxJS7H7x7iZKXMDGs/2Ba994R:brzYd5935oPaoq/uphkvNWWJJSL97MZ

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  46cea6ffffc2897d0148e9835f76b42049eb0fd175a7ab1923fc482f8c97ac5d
- Size
  
  172KB
- MD5
  
  559e8c01b45a9f12aaf12533b10f07a0
- SHA1
  
  641da6074d29ac69a2b2a651c639172e495f6bc0
- SHA256
  
  46cea6ffffc2897d0148e9835f76b42049eb0fd175a7ab1923fc482f8c97ac5d
- SHA512
  
  fb909b3d1a191502cf7670971a933cbb140ab36385c2711665797a7650cd9b373ce8aaa74b68b45dd68d5570fd192d504a4089d943ace4e9e4d7ef70b7cb3edf
- SSDEEP
  
  1536:b1RRpYd5935oPIZHoqCBtAupRvyNPvlvNWWBrLLhxJS7H7x7iZKXMDGs/2Ba994R:brzYd5935oPaoq/uphkvNWWJJSL97MZ
Score

8^/10

persistence
- Sets DLL path for service in the registry
  persistence
- Deletes itself
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2