a486ae24db07caaeeb67e02e09c7913e1da42f663604837c899a5bb3b6a48703 | Triage

Sharing

General

Target

a486ae24db07caaeeb67e02e09c7913e1da42f663604837c899a5bb3b6a48703
Size

304KB
Sample

221123-qrj4tahf7t
MD5

bc9835c7166917a9ead9c673a161b473
SHA1

ff357439e772c199761b4cc89181ab21400db55c
SHA256

a486ae24db07caaeeb67e02e09c7913e1da42f663604837c899a5bb3b6a48703
SHA512

ce290f576a46c8d1b5e5263f45dbe9f5cc46b6b466f620dd701a3d8c300246e6ae789d035b94614d496b713492ff151f6154c5a085edf02c8e69bcf9069b2db1
SSDEEP

6144:Tr1ib3zzxTiKY+8RLWyYQlrWmyjDacGIBZPakY9d7yWOlaxTwlb:H1sZOKYHRLWyYQlrWmdcG+1TQyXlaxT

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  a486ae24db07caaeeb67e02e09c7913e1da42f663604837c899a5bb3b6a48703
- Size
  
  304KB
- MD5
  
  bc9835c7166917a9ead9c673a161b473
- SHA1
  
  ff357439e772c199761b4cc89181ab21400db55c
- SHA256
  
  a486ae24db07caaeeb67e02e09c7913e1da42f663604837c899a5bb3b6a48703
- SHA512
  
  ce290f576a46c8d1b5e5263f45dbe9f5cc46b6b466f620dd701a3d8c300246e6ae789d035b94614d496b713492ff151f6154c5a085edf02c8e69bcf9069b2db1
- SSDEEP
  
  6144:Tr1ib3zzxTiKY+8RLWyYQlrWmyjDacGIBZPakY9d7yWOlaxTwlb:H1sZOKYHRLWyYQlrWmdcG+1TQyXlaxT
Score

8^/10

persistence
- Executes dropped EXE
- Deletes itself
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Remote System Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2