d7a2d0c0eb508fb9caa9c9140b6c9a2f16f427c960343b8a3b7b860e12f476cb | Triage

Sharing

General

Target

d7a2d0c0eb508fb9caa9c9140b6c9a2f16f427c960343b8a3b7b860e12f476cb
Size

519KB
Sample

221123-s8rlbsdc85
MD5

d573dc64a47eda6406b2208c797fcdd1
SHA1

a50738dc1a83b5ba524906adb754ddb2c61675e9
SHA256

d7a2d0c0eb508fb9caa9c9140b6c9a2f16f427c960343b8a3b7b860e12f476cb
SHA512

7d6965edfc72c9dd1ebc46bc318863c21d8d681585b8a411d355bd31718927924111402387127b1ee4dfea5cfcc095de689b33d2e7e712c67d3e4b5a005aa999
SSDEEP

12288:KJcMFpzle6KQldCt4GEN/QajXDILjLdxNhps:KHzY6Tl/G0zU

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  d7a2d0c0eb508fb9caa9c9140b6c9a2f16f427c960343b8a3b7b860e12f476cb
- Size
  
  519KB
- MD5
  
  d573dc64a47eda6406b2208c797fcdd1
- SHA1
  
  a50738dc1a83b5ba524906adb754ddb2c61675e9
- SHA256
  
  d7a2d0c0eb508fb9caa9c9140b6c9a2f16f427c960343b8a3b7b860e12f476cb
- SHA512
  
  7d6965edfc72c9dd1ebc46bc318863c21d8d681585b8a411d355bd31718927924111402387127b1ee4dfea5cfcc095de689b33d2e7e712c67d3e4b5a005aa999
- SSDEEP
  
  12288:KJcMFpzle6KQldCt4GEN/QajXDILjLdxNhps:KHzY6Tl/G0zU
Score

8^/10

persistence
- Executes dropped EXE
- Deletes itself
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2