831bdafac182ed74305f9a612cd00cfec52a675c880e01a0cbad84e1e76a24cc | Triage

Sharing

General

Target

831bdafac182ed74305f9a612cd00cfec52a675c880e01a0cbad84e1e76a24cc
Size

4.9MB
Sample

221123-k3yhpaaa87
MD5

2b03146531dd5016ed68d30abf45ab58
SHA1

28491f4ef4a236129522d2dcd582d9b1ecc0211c
SHA256

831bdafac182ed74305f9a612cd00cfec52a675c880e01a0cbad84e1e76a24cc
SHA512

7c853681ce07ed584510af9529007cda1c51252ddf166851d63cf07fa3d92a679ca2775e72b6d172c4f7b58ba7f1cb4e37b5a8263c26dc8a86bbbc99d4f876ea
SSDEEP

98304:QT7ynCwGOC7Nf1+zWC+aOVP1YkXW3GzvFWYoDY+pIyDUoTPM+yMprj0hodPanLzy:0yCwGOYNf6WC+aOVtYh32vFRopdsMV0y

Score

8^/10

discovery persistence

Malware Config

Targets

- Target
  
  831bdafac182ed74305f9a612cd00cfec52a675c880e01a0cbad84e1e76a24cc
- Size
  
  4.9MB
- MD5
  
  2b03146531dd5016ed68d30abf45ab58
- SHA1
  
  28491f4ef4a236129522d2dcd582d9b1ecc0211c
- SHA256
  
  831bdafac182ed74305f9a612cd00cfec52a675c880e01a0cbad84e1e76a24cc
- SHA512
  
  7c853681ce07ed584510af9529007cda1c51252ddf166851d63cf07fa3d92a679ca2775e72b6d172c4f7b58ba7f1cb4e37b5a8263c26dc8a86bbbc99d4f876ea
- SSDEEP
  
  98304:QT7ynCwGOC7Nf1+zWC+aOVP1YkXW3GzvFWYoDY+pIyDUoTPM+yMprj0hodPanLzy:0yCwGOYNf6WC+aOVtYh32vFRopdsMV0y
Score

8^/10

discovery persistence
- Modifies AppInit DLL entries
  persistence
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence