7122c70082f94c3b567d94c7e9875cb23f6ff244d48884f2882b8c304fc3bbc9 | Triage

Sharing

General

Target

7122c70082f94c3b567d94c7e9875cb23f6ff244d48884f2882b8c304fc3bbc9
Size

200KB
Sample

221106-ke7rfsbhh9
MD5

1f2bccf67e9b1afc050da1ce36eb5930
SHA1

b65809055f908bed584c02997e31093ef940de91
SHA256

7122c70082f94c3b567d94c7e9875cb23f6ff244d48884f2882b8c304fc3bbc9
SHA512

b5606bca5961b6c97e5e794edfa1e2299259db2d0a53a14fd6c6fa4f109ec898330e0d2e7f1161ace01e85be8b9b658ab86929c722eb4a6f7728bf027bc4f055
SSDEEP

6144:ceymVONYFdlD3iNYxVLdIz68TqLtU0D/szn:SmVONYFdlD3iNYxVLiButU0D/4

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  7122c70082f94c3b567d94c7e9875cb23f6ff244d48884f2882b8c304fc3bbc9
- Size
  
  200KB
- MD5
  
  1f2bccf67e9b1afc050da1ce36eb5930
- SHA1
  
  b65809055f908bed584c02997e31093ef940de91
- SHA256
  
  7122c70082f94c3b567d94c7e9875cb23f6ff244d48884f2882b8c304fc3bbc9
- SHA512
  
  b5606bca5961b6c97e5e794edfa1e2299259db2d0a53a14fd6c6fa4f109ec898330e0d2e7f1161ace01e85be8b9b658ab86929c722eb4a6f7728bf027bc4f055
- SSDEEP
  
  6144:ceymVONYFdlD3iNYxVLdIz68TqLtU0D/szn:SmVONYFdlD3iNYxVLiButU0D/4
Score

8^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2