70a574fd3ad736ba86d37736bbf451f3daddda1991ca46bc08e0c8711b232f3d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

70a574fd3ad736ba86d37736bbf451f3daddda1991ca46bc08e0c8711b232f3d
Size

36KB
Sample

221029-zkmqssfahr
MD5

84443a156c54c96eb3d2d2490aa56ed0
SHA1

a3394607ee75999874d7063051358e3e3596e0a0
SHA256

70a574fd3ad736ba86d37736bbf451f3daddda1991ca46bc08e0c8711b232f3d
SHA512

b60bf2cfb6e256c258cc8d763d213c0074b14a054cca2b4cc90e17efe0feba702e3448bc7c173b02506491f501002a2471f18262db70563e17f37f726c673e52
SSDEEP

768:gFq9o5mXhd7fpH+8hi6lrR0kJURJV744laZtHSXpdjbwwcx:gFqW4xPHThiorG0ZjSXpdXwr

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  70a574fd3ad736ba86d37736bbf451f3daddda1991ca46bc08e0c8711b232f3d
- Size
  
  36KB
- MD5
  
  84443a156c54c96eb3d2d2490aa56ed0
- SHA1
  
  a3394607ee75999874d7063051358e3e3596e0a0
- SHA256
  
  70a574fd3ad736ba86d37736bbf451f3daddda1991ca46bc08e0c8711b232f3d
- SHA512
  
  b60bf2cfb6e256c258cc8d763d213c0074b14a054cca2b4cc90e17efe0feba702e3448bc7c173b02506491f501002a2471f18262db70563e17f37f726c673e52
- SSDEEP
  
  768:gFq9o5mXhd7fpH+8hi6lrR0kJURJV744laZtHSXpdjbwwcx:gFqW4xPHThiorG0ZjSXpdXwr
Score

8^/10

persistence
- Blocklisted process makes network request
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2