791ab5817cb5635b90977bdc964a1af3019a548c1903ee5b7cbfab2b4bf17a5b | Triage

Sharing

General

Target

SOA.zip
Size

474KB
Sample

221123-hzc2gaef65
MD5

12a2a0aa634ea1e096b67eab1ebc937e
SHA1

e7cc54aa4617cc40a3f1791ea3159ed292cdf7c5
SHA256

791ab5817cb5635b90977bdc964a1af3019a548c1903ee5b7cbfab2b4bf17a5b
SHA512

3c6dea4f2fbceb6e24c0e8eca053a27dc7ad34561ec3b34291b7ea86babd85d0f8b07329e01b8cbd63f2491db2da9339704389f71043046f7335a342d7b6f91a
SSDEEP

12288:ADKIr6EymAlMgE2Bfb0tBSRS1hnW7s7ZLaG8vQQzX0ycLT8:A3MZJj0uRIn4NQQzX0ycP8

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  SOA.exe
- Size
  
  477KB
- MD5
  
  d794051f2d1b5df0a01bdf176edf7d1d
- SHA1
  
  e181789066bdaff32544ffb454761ce7af3577db
- SHA256
  
  5c50dfe4776a3d34649ea834cdcba8b880c5651706473143900964e540436fc6
- SHA512
  
  dc29e32a99e998b884c1f8e78a8f69c9f1b68be282ec4831ec56e68c713000e250bef47f19ccac265fc4c728d6a5539355276d3b35094311df13ad1dd3d4e253
- SSDEEP
  
  12288:z/hPIJ66gmAFMgE2BfH0tBARS1rnW7s7ZNaE8vQQlvUycT:zJwsRJ/0URAn4jQQlvUycT
Score

8^/10

persistence
- Sets service image path in registry
  persistence
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2