20dba34f27d472c2d5bd8ac37cd7a174b64513fe0dd977c4f12930d679fdaf45 | Triage

Sharing

General

Target

20dba34f27d472c2d5bd8ac37cd7a174b64513fe0dd977c4f12930d679fdaf45
Size

78KB
Sample

221029-fjxd3abha2
MD5

bf44a00dbf666b33b190b8d7338d2525
SHA1

8bf6977b832504efdc5b7d93fe91eaaf0d332b3d
SHA256

20dba34f27d472c2d5bd8ac37cd7a174b64513fe0dd977c4f12930d679fdaf45
SHA512

83cc56ddc70b85bda1627d2f869c052325a23f32ca3df70f651563fdd8bb4b1902e3fb529015b4a468ada13063c469618ad765eee8b7c4b1bd79dec27fe35300
SSDEEP

1536:9TaaQq9hQgA5elHb4xhxEirz8Qnm9sK7mPt1+SR64I3iIFxxBDN:9TawzQgA5m7KHnnm9sK7mT+SE3/tDN

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  20dba34f27d472c2d5bd8ac37cd7a174b64513fe0dd977c4f12930d679fdaf45
- Size
  
  78KB
- MD5
  
  bf44a00dbf666b33b190b8d7338d2525
- SHA1
  
  8bf6977b832504efdc5b7d93fe91eaaf0d332b3d
- SHA256
  
  20dba34f27d472c2d5bd8ac37cd7a174b64513fe0dd977c4f12930d679fdaf45
- SHA512
  
  83cc56ddc70b85bda1627d2f869c052325a23f32ca3df70f651563fdd8bb4b1902e3fb529015b4a468ada13063c469618ad765eee8b7c4b1bd79dec27fe35300
- SSDEEP
  
  1536:9TaaQq9hQgA5elHb4xhxEirz8Qnm9sK7mPt1+SR64I3iIFxxBDN:9TawzQgA5m7KHnnm9sK7mT+SE3/tDN
Score

8^/10

persistence
- Blocklisted process makes network request
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2