0ba194481abce5a8b8600e5c29247a8af6f348034af69941cf54478a13c16300 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0ba194481abce5a8b8600e5c29247a8af6f348034af69941cf54478a13c16300
Size

92KB
Sample

221106-rznbwafef9
MD5

0dcddb04f1b2d5f1dfd00d3a8667017a
SHA1

464028cb5c3065e1b6a54a25b36aaecd64e3c6da
SHA256

0ba194481abce5a8b8600e5c29247a8af6f348034af69941cf54478a13c16300
SHA512

12d3dfc7f052bd1cca2f7e0aae6f4a8f31e0600898b374cd3523e1c263b9e2360342d4d7892db711830107211b006ed73d84dee6008648382e55b32a2740fdea
SSDEEP

1536:tqcJRMmbTP60teaMr3vFcSG/m3TXArHFq+zCM1ioYJlIU:tjRxbm8tItc+Arlq+rioYJlIU

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  0ba194481abce5a8b8600e5c29247a8af6f348034af69941cf54478a13c16300
- Size
  
  92KB
- MD5
  
  0dcddb04f1b2d5f1dfd00d3a8667017a
- SHA1
  
  464028cb5c3065e1b6a54a25b36aaecd64e3c6da
- SHA256
  
  0ba194481abce5a8b8600e5c29247a8af6f348034af69941cf54478a13c16300
- SHA512
  
  12d3dfc7f052bd1cca2f7e0aae6f4a8f31e0600898b374cd3523e1c263b9e2360342d4d7892db711830107211b006ed73d84dee6008648382e55b32a2740fdea
- SSDEEP
  
  1536:tqcJRMmbTP60teaMr3vFcSG/m3TXArHFq+zCM1ioYJlIU:tjRxbm8tItc+Arlq+rioYJlIU
Score

8^/10

persistence
- Modifies AppInit DLL entries
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2