27fb67a89cc8d0450dba11cdee64d5761d8931ff034e3b8bed62cba55fc605fc | Triage

Sharing

Copy URL Twitter E-mail

General

Target

27fb67a89cc8d0450dba11cdee64d5761d8931ff034e3b8bed62cba55fc605fc
Size

122KB
Sample

221107-syvj8seaa9
MD5

056823ce33b70d6f88574997744c9320
SHA1

6cb063e8c7f557426652b264ddd4068cf7d0bc0c
SHA256

27fb67a89cc8d0450dba11cdee64d5761d8931ff034e3b8bed62cba55fc605fc
SHA512

fec4503a9f34da3623df2f5aa4872c84563602cb7562e3fd0a7f575cd58083273de9d879c305efe77188d59f64952b44b4affac870cc3a950fdf9930311d3a37
SSDEEP

3072:BCflOgMfgs5+oOgMfgs5UoOgMfgs5YoH7ESz5f2mu:BOlhds9hds/hdstHVN+mu

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  27fb67a89cc8d0450dba11cdee64d5761d8931ff034e3b8bed62cba55fc605fc
- Size
  
  122KB
- MD5
  
  056823ce33b70d6f88574997744c9320
- SHA1
  
  6cb063e8c7f557426652b264ddd4068cf7d0bc0c
- SHA256
  
  27fb67a89cc8d0450dba11cdee64d5761d8931ff034e3b8bed62cba55fc605fc
- SHA512
  
  fec4503a9f34da3623df2f5aa4872c84563602cb7562e3fd0a7f575cd58083273de9d879c305efe77188d59f64952b44b4affac870cc3a950fdf9930311d3a37
- SSDEEP
  
  3072:BCflOgMfgs5+oOgMfgs5UoOgMfgs5YoH7ESz5f2mu:BOlhds9hds/hdstHVN+mu
Score

8^/10

persistence
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2