76920592836662d1651d20afd9ac1afee41c96324e1cb7ddfde3698edc4dc628 | Triage

Resubmissions

23-11-2022 11:54

221123-n29q4sac62 8

23-11-2022 11:50

221123-nzvjeaaa96 8

Sharing

General

Target

DigioSmartClientWinV1.exe
Size

2.6MB
Sample

221123-n29q4sac62
MD5

2c26a5fe35fb0d917f94abf706dc37ca
SHA1

3aacc94414991041c970ef8f09980e5966e9e18b
SHA256

76920592836662d1651d20afd9ac1afee41c96324e1cb7ddfde3698edc4dc628
SHA512

a6f39e56017beac8e7a1085e415e5e52d439d7a6ed6bdd59505e44bdcf39f253ceede3f4754bcf13c508d51247e04d8bcf2b6259c569bdeb98282c9d8c60a1b6
SSDEEP

49152:m75D5c14Z/7oFu9TNtROHcXUY2he3E/6BaMT8N2x9mV7dfR:K504Z/7x9XRO8F2c3GN2vYJ5

Score

8^/10

discovery persistence

Malware Config

Targets

- Target
  
  DigioSmartClientWinV1.exe
- Size
  
  2.6MB
- MD5
  
  2c26a5fe35fb0d917f94abf706dc37ca
- SHA1
  
  3aacc94414991041c970ef8f09980e5966e9e18b
- SHA256
  
  76920592836662d1651d20afd9ac1afee41c96324e1cb7ddfde3698edc4dc628
- SHA512
  
  a6f39e56017beac8e7a1085e415e5e52d439d7a6ed6bdd59505e44bdcf39f253ceede3f4754bcf13c508d51247e04d8bcf2b6259c569bdeb98282c9d8c60a1b6
- SSDEEP
  
  49152:m75D5c14Z/7oFu9TNtROHcXUY2he3E/6BaMT8N2x9mV7dfR:K504Z/7x9XRO8F2c3GN2vYJ5
Score

8^/10

discovery persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2