0bd0321ef49903fa3be00621add69e18f2e13740bddcef52a5fd4e056bcdb0e6 | Triage

Sharing

General

Target

0bd0321ef49903fa3be00621add69e18f2e13740bddcef52a5fd4e056bcdb0e6
Size

58KB
Sample

221123-mrvc1aeh37
MD5

50ec5eea49f541419f96483de88f42cf
SHA1

2dc8e80e6193191112d01aa0978e40074451c666
SHA256

0bd0321ef49903fa3be00621add69e18f2e13740bddcef52a5fd4e056bcdb0e6
SHA512

b6e1af165e35b06fd832cd0e3615801a610d7f623625a6f1a2dcb67fdd3c27cd6fbf1d05a6f0b04a766b6f7bb3ea4c62234e351e38e921f0dbd60ad660f9dfe1
SSDEEP

1536:/M3Re3bDCJHrooFriiqUTtDEJCh9SlIIlvZaus:U36CdHsgtP9gPZ0

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  0bd0321ef49903fa3be00621add69e18f2e13740bddcef52a5fd4e056bcdb0e6
- Size
  
  58KB
- MD5
  
  50ec5eea49f541419f96483de88f42cf
- SHA1
  
  2dc8e80e6193191112d01aa0978e40074451c666
- SHA256
  
  0bd0321ef49903fa3be00621add69e18f2e13740bddcef52a5fd4e056bcdb0e6
- SHA512
  
  b6e1af165e35b06fd832cd0e3615801a610d7f623625a6f1a2dcb67fdd3c27cd6fbf1d05a6f0b04a766b6f7bb3ea4c62234e351e38e921f0dbd60ad660f9dfe1
- SSDEEP
  
  1536:/M3Re3bDCJHrooFriiqUTtDEJCh9SlIIlvZaus:U36CdHsgtP9gPZ0
Score

8^/10

persistence
- Blocklisted process makes network request
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2