c87f6b1c5b5d426cdaadd06b982fb0e046d3b415aa842213de20adfa2e5f1387 | Triage

Sharing

General

Target

c87f6b1c5b5d426cdaadd06b982fb0e046d3b415aa842213de20adfa2e5f1387
Size

108KB
Sample

221123-tdjgxagg8t
MD5

1d380684c8c460ed76bc5e8f0bdb4d06
SHA1

e5952a55b5572cae241e7d2d4322b8f88be9ab76
SHA256

c87f6b1c5b5d426cdaadd06b982fb0e046d3b415aa842213de20adfa2e5f1387
SHA512

cc6b974175c9dfab9a66acb2b2573468ec7a0d3aed75177af9d339ae352a46149e93278f57b11ed0b80d0962a0580691fdb6340ed2cdb5c28ec96a94c50ee08c
SSDEEP

3072:fNrjKaa7+reA3EdtIMqE1kWEYOIfjm64ZZQ7tF:fNr+ACbYM3TbTfAZZa

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  c87f6b1c5b5d426cdaadd06b982fb0e046d3b415aa842213de20adfa2e5f1387
- Size
  
  108KB
- MD5
  
  1d380684c8c460ed76bc5e8f0bdb4d06
- SHA1
  
  e5952a55b5572cae241e7d2d4322b8f88be9ab76
- SHA256
  
  c87f6b1c5b5d426cdaadd06b982fb0e046d3b415aa842213de20adfa2e5f1387
- SHA512
  
  cc6b974175c9dfab9a66acb2b2573468ec7a0d3aed75177af9d339ae352a46149e93278f57b11ed0b80d0962a0580691fdb6340ed2cdb5c28ec96a94c50ee08c
- SSDEEP
  
  3072:fNrjKaa7+reA3EdtIMqE1kWEYOIfjm64ZZQ7tF:fNr+ACbYM3TbTfAZZa
Score

8^/10

persistence
- Sets DLL path for service in the registry
  persistence
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2