026afe8c0c6da4d8c654db281f45c68acf5446567363277d546c3479b610f6e9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

026afe8c0c6da4d8c654db281f45c68acf5446567363277d546c3479b610f6e9
Size

380KB
Sample

221030-dftsnaadgn
MD5

fafde24964baa607df550e6c0b69606a
SHA1

8205755fa88be0262289732c316ef515e49f788e
SHA256

026afe8c0c6da4d8c654db281f45c68acf5446567363277d546c3479b610f6e9
SHA512

602e507c579c6f2ae76eee39f101c32cd36e94b4ea9e696fed8a589c9bbb5fb929fe23284f608bd590be496ea1b259a0adbb6a5633e9f519496d55211b219a0a
SSDEEP

6144:A7gB1ZRiwyU/nr7jqd/hhdH5E4iGJjRJ2WHFEg1Af0XbJwqcP8ha7dBby:AMCmOZFWg1M020hcBb

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  026afe8c0c6da4d8c654db281f45c68acf5446567363277d546c3479b610f6e9
- Size
  
  380KB
- MD5
  
  fafde24964baa607df550e6c0b69606a
- SHA1
  
  8205755fa88be0262289732c316ef515e49f788e
- SHA256
  
  026afe8c0c6da4d8c654db281f45c68acf5446567363277d546c3479b610f6e9
- SHA512
  
  602e507c579c6f2ae76eee39f101c32cd36e94b4ea9e696fed8a589c9bbb5fb929fe23284f608bd590be496ea1b259a0adbb6a5633e9f519496d55211b219a0a
- SSDEEP
  
  6144:A7gB1ZRiwyU/nr7jqd/hhdH5E4iGJjRJ2WHFEg1Af0XbJwqcP8ha7dBby:AMCmOZFWg1M020hcBb
Score

8^/10

persistence
- Executes dropped EXE
- Creates a Windows Service
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2