4ac54a9b8a7012f62a993b95f52efde09864b01156e3fec8e83f89b401a6db95 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4ac54a9b8a7012f62a993b95f52efde09864b01156e3fec8e83f89b401a6db95
Size

95KB
Sample

221107-zyrlxabggl
MD5

0b79cea991e89cfd89d08763bfea1b50
SHA1

1bdcf22cbfe9d9d1da39f585a28824ea96e081d1
SHA256

4ac54a9b8a7012f62a993b95f52efde09864b01156e3fec8e83f89b401a6db95
SHA512

be1ec4df0fedc41e86827447b569a6ec8a057e14fe0d5610007fb2d051c2bd941c69f6174ef00207ad23e184edead59d77fdf5bccd6df83883853b75ee7c8ed6
SSDEEP

1536:34aIjDFL1Xul6OP9Vco6R579st8OJLmlgVU/KXfMsRbBxcWiwhppo6tV:IaMBYnP2bM8u1fTxcWxi6

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  4ac54a9b8a7012f62a993b95f52efde09864b01156e3fec8e83f89b401a6db95
- Size
  
  95KB
- MD5
  
  0b79cea991e89cfd89d08763bfea1b50
- SHA1
  
  1bdcf22cbfe9d9d1da39f585a28824ea96e081d1
- SHA256
  
  4ac54a9b8a7012f62a993b95f52efde09864b01156e3fec8e83f89b401a6db95
- SHA512
  
  be1ec4df0fedc41e86827447b569a6ec8a057e14fe0d5610007fb2d051c2bd941c69f6174ef00207ad23e184edead59d77fdf5bccd6df83883853b75ee7c8ed6
- SSDEEP
  
  1536:34aIjDFL1Xul6OP9Vco6R579st8OJLmlgVU/KXfMsRbBxcWiwhppo6tV:IaMBYnP2bM8u1fTxcWxi6
Score

8^/10

persistence
- Sets DLL path for service in the registry
  persistence
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2