70cf119b0a17fd0d3a2e7668693c9a41f2ee59b5037b691dad9b2151126123ef | Triage

Sharing

General

Target

70cf119b0a17fd0d3a2e7668693c9a41f2ee59b5037b691dad9b2151126123ef
Size

206KB
Sample

221123-wvx3qsda86
MD5

011711065387d89673035cb6d27ddfbb
SHA1

b37ccdc7a278fe0a007bc6cf5ad097d0788f2eee
SHA256

70cf119b0a17fd0d3a2e7668693c9a41f2ee59b5037b691dad9b2151126123ef
SHA512

2ce5c4f7dc8a0188f0e3ba4c4200dd03b247dc0c0f6cff55d1f0460cb0f073d2817ec805cf619330639299b15867be3b1117e22725010999f050e95aa220e78d
SSDEEP

6144:tu7XQyUMjLzilgUOclNA3FQ1qgz6FaCXe7Zgm8U:YtqFnlGVgz6YQe7M

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  70cf119b0a17fd0d3a2e7668693c9a41f2ee59b5037b691dad9b2151126123ef
- Size
  
  206KB
- MD5
  
  011711065387d89673035cb6d27ddfbb
- SHA1
  
  b37ccdc7a278fe0a007bc6cf5ad097d0788f2eee
- SHA256
  
  70cf119b0a17fd0d3a2e7668693c9a41f2ee59b5037b691dad9b2151126123ef
- SHA512
  
  2ce5c4f7dc8a0188f0e3ba4c4200dd03b247dc0c0f6cff55d1f0460cb0f073d2817ec805cf619330639299b15867be3b1117e22725010999f050e95aa220e78d
- SSDEEP
  
  6144:tu7XQyUMjLzilgUOclNA3FQ1qgz6FaCXe7Zgm8U:YtqFnlGVgz6YQe7M
Score

7^/10

persistence
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2