4ce6f5b6bfc61a8a4a209699e9350d82d3dea797f62510c9f82f140df3027d10 | Triage

Sharing

General

Target

4ce6f5b6bfc61a8a4a209699e9350d82d3dea797f62510c9f82f140df3027d10
Size

282KB
Sample

221123-rpx4bshb88
MD5

afb5c434971203b49eeb6fcdc0628959
SHA1

a526310823858272babf9e6e87ec338d788c9a0b
SHA256

4ce6f5b6bfc61a8a4a209699e9350d82d3dea797f62510c9f82f140df3027d10
SHA512

a82227cb5525191ab15ee1d1aa67665af8d0156de3cf8a8694c2c4036fd2dfb8bdf0d60fc063306583fe56da8129e7d66d0987bafd126202ab29024b99507d9b
SSDEEP

6144:uCdcF+JoOBrwtEcc6ozxm2xUfOflaswez:E+RBUjAm2xqYas1

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  4ce6f5b6bfc61a8a4a209699e9350d82d3dea797f62510c9f82f140df3027d10
- Size
  
  282KB
- MD5
  
  afb5c434971203b49eeb6fcdc0628959
- SHA1
  
  a526310823858272babf9e6e87ec338d788c9a0b
- SHA256
  
  4ce6f5b6bfc61a8a4a209699e9350d82d3dea797f62510c9f82f140df3027d10
- SHA512
  
  a82227cb5525191ab15ee1d1aa67665af8d0156de3cf8a8694c2c4036fd2dfb8bdf0d60fc063306583fe56da8129e7d66d0987bafd126202ab29024b99507d9b
- SSDEEP
  
  6144:uCdcF+JoOBrwtEcc6ozxm2xUfOflaswez:E+RBUjAm2xqYas1
Score

8^/10

persistence
- Executes dropped EXE
- Deletes itself
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2