d83bae87fc3b8fa77edc2db5b1b6b01c6f1285c61701bece242ba7b4f77d26f3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d83bae87fc3b8fa77edc2db5b1b6b01c6f1285c61701bece242ba7b4f77d26f3
Size

115KB
Sample

221030-jttygabchr
MD5

a32c5068207a704406444e63882669d0
SHA1

618d26b02348727646931dd97700ac08f8022a5e
SHA256

d83bae87fc3b8fa77edc2db5b1b6b01c6f1285c61701bece242ba7b4f77d26f3
SHA512

8695764833b2a57f922f0c0a358801814fb28e2c7db2b8d579e0a9ac6436e57522e0421907526c918064b4a5733f5590030ff7c8d3662f38b4521a6efa0d4d3a
SSDEEP

1536:FNxU+W+73uSpoo3e/8+dcr2yS7yt0xzSIAuPtc5tThn3UZSasvClv3U5JFF+:NU+W+qNo3e9Sy/K89c5t+km3CM

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  d83bae87fc3b8fa77edc2db5b1b6b01c6f1285c61701bece242ba7b4f77d26f3
- Size
  
  115KB
- MD5
  
  a32c5068207a704406444e63882669d0
- SHA1
  
  618d26b02348727646931dd97700ac08f8022a5e
- SHA256
  
  d83bae87fc3b8fa77edc2db5b1b6b01c6f1285c61701bece242ba7b4f77d26f3
- SHA512
  
  8695764833b2a57f922f0c0a358801814fb28e2c7db2b8d579e0a9ac6436e57522e0421907526c918064b4a5733f5590030ff7c8d3662f38b4521a6efa0d4d3a
- SSDEEP
  
  1536:FNxU+W+73uSpoo3e/8+dcr2yS7yt0xzSIAuPtc5tThn3UZSasvClv3U5JFF+:NU+W+qNo3e9Sy/K89c5t+km3CM
Score

8^/10

persistence
- Sets file execution options in registry
  persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2