fa7c6594152ee0dc8b9d13475dc3bffb9dfe0f4cdd7be93c727aff74c6534cb0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fa7c6594152ee0dc8b9d13475dc3bffb9dfe0f4cdd7be93c727aff74c6534cb0
Size

652KB
Sample

221029-g27s7aefhm
MD5

1703bc0965f70364d0551f8a35278939
SHA1

99316f452e4c17ebc8dfd157c8e81a6a3ed85b1f
SHA256

fa7c6594152ee0dc8b9d13475dc3bffb9dfe0f4cdd7be93c727aff74c6534cb0
SHA512

7c93cfa0b68089136a55a690a3fc32ce7e37974e41b3684ffa01223e9e82ebfe81acd824ee3f20d4064ae94cbedfa63c253e935a6de3507b496b38bce2eccf2f
SSDEEP

12288:sxv79d6cjhDBPl8/jDx65P7QFV2e+vWbWbM4aHYNEVe5LRLgiVnuesQE:MvRd6cjhDBPmD05zQ32nw4uYNEo51L3q

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  fa7c6594152ee0dc8b9d13475dc3bffb9dfe0f4cdd7be93c727aff74c6534cb0
- Size
  
  652KB
- MD5
  
  1703bc0965f70364d0551f8a35278939
- SHA1
  
  99316f452e4c17ebc8dfd157c8e81a6a3ed85b1f
- SHA256
  
  fa7c6594152ee0dc8b9d13475dc3bffb9dfe0f4cdd7be93c727aff74c6534cb0
- SHA512
  
  7c93cfa0b68089136a55a690a3fc32ce7e37974e41b3684ffa01223e9e82ebfe81acd824ee3f20d4064ae94cbedfa63c253e935a6de3507b496b38bce2eccf2f
- SSDEEP
  
  12288:sxv79d6cjhDBPl8/jDx65P7QFV2e+vWbWbM4aHYNEVe5LRLgiVnuesQE:MvRd6cjhDBPmD05zQ32nw4uYNEo51L3q
Score

8^/10

persistence
- Executes dropped EXE
- Sets service image path in registry
  persistence
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2