026a4492472855fef9e485c8fdbf0faa672ba74090ae46ab5c76651400208a6e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

026a4492472855fef9e485c8fdbf0faa672ba74090ae46ab5c76651400208a6e
Size

724KB
Sample

221107-eh3zsaffg7
MD5

0ecd2f4b4647121734addc9a1f3ecc50
SHA1

a0f9db68030e32ad322a766ff0c627daa76e6f4c
SHA256

026a4492472855fef9e485c8fdbf0faa672ba74090ae46ab5c76651400208a6e
SHA512

2377b16594dab3978c885f6071d2ca13321f01e67939b065744c86f31bf191c0619d234c8a8a5b23a741efc034022cf3759cd49b6d33b32a606530c0f057b0f0
SSDEEP

12288:71/aGLDCMNpNAkoSzZWD8ayX2MQCw7D0AhAS3sHpnQ9UUhzD8iQsJf5ry5VlotW:71/aGLDCM4D8ayGMshF3gpQ9UUZDiwyX

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  026a4492472855fef9e485c8fdbf0faa672ba74090ae46ab5c76651400208a6e
- Size
  
  724KB
- MD5
  
  0ecd2f4b4647121734addc9a1f3ecc50
- SHA1
  
  a0f9db68030e32ad322a766ff0c627daa76e6f4c
- SHA256
  
  026a4492472855fef9e485c8fdbf0faa672ba74090ae46ab5c76651400208a6e
- SHA512
  
  2377b16594dab3978c885f6071d2ca13321f01e67939b065744c86f31bf191c0619d234c8a8a5b23a741efc034022cf3759cd49b6d33b32a606530c0f057b0f0
- SSDEEP
  
  12288:71/aGLDCMNpNAkoSzZWD8ayX2MQCw7D0AhAS3sHpnQ9UUhzD8iQsJf5ry5VlotW:71/aGLDCM4D8ayGMshF3gpQ9UUZDiwyX
Score

8^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2