1d08eabbcbdbe5cfae53b3c12a894cb7b7697949f37b9e65706853ea76a4b04e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1d08eabbcbdbe5cfae53b3c12a894cb7b7697949f37b9e65706853ea76a4b04e
Size

184KB
Sample

221029-2ynalabdcl
MD5

837e6d7541b9677c577b915fbf84b3a0
SHA1

708eada05de32372e72c9bb7135ee24f415586df
SHA256

1d08eabbcbdbe5cfae53b3c12a894cb7b7697949f37b9e65706853ea76a4b04e
SHA512

ec586d0a385675aa4d729d6d5240fd8f0463fdbbc9e2fd4df8e8b7d5da63abc4efe061bba26cbc2eea890192826398b6cbb02703ee476d52211081dc8c41990f
SSDEEP

3072:RTglpbRcieElOiXTcBQvpK84BnZ1K7OIZ8YgLGLvCC6dzCxLIDfkTwE:W3XhvP4BZ1KT8YgLGSE

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  1d08eabbcbdbe5cfae53b3c12a894cb7b7697949f37b9e65706853ea76a4b04e
- Size
  
  184KB
- MD5
  
  837e6d7541b9677c577b915fbf84b3a0
- SHA1
  
  708eada05de32372e72c9bb7135ee24f415586df
- SHA256
  
  1d08eabbcbdbe5cfae53b3c12a894cb7b7697949f37b9e65706853ea76a4b04e
- SHA512
  
  ec586d0a385675aa4d729d6d5240fd8f0463fdbbc9e2fd4df8e8b7d5da63abc4efe061bba26cbc2eea890192826398b6cbb02703ee476d52211081dc8c41990f
- SSDEEP
  
  3072:RTglpbRcieElOiXTcBQvpK84BnZ1K7OIZ8YgLGLvCC6dzCxLIDfkTwE:W3XhvP4BZ1KT8YgLGSE
Score

8^/10

persistence
- Executes dropped EXE
- Modifies AppInit DLL entries
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2