f0cfa0f8ec1f428286d94912cb40f36b235623be37497c1c86fa3ba35d2f8f79 | Triage

Sharing

General

Target

f0cfa0f8ec1f428286d94912cb40f36b235623be37497c1c86fa3ba35d2f8f79
Size

4.4MB
Sample

221123-xb6ffaee77
MD5

6b73355a3b7536d68d2e2dd0aea05b46
SHA1

1705370b8287ba7de6619592ff65a47bf25d4e19
SHA256

f0cfa0f8ec1f428286d94912cb40f36b235623be37497c1c86fa3ba35d2f8f79
SHA512

9703d804be2d0420712974bbeac643c71dfc5ce139c48820853f194d1ffbf42813591169c392d66c77bf99db65ceaa419f502cd47ad6966f30ad707fa10a2213
SSDEEP

98304:VXmbiSRjzrxXDw9RbeXcpNUNXlJBAUZL2:Ai4tDwWXcMN1JVa

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  f0cfa0f8ec1f428286d94912cb40f36b235623be37497c1c86fa3ba35d2f8f79
- Size
  
  4.4MB
- MD5
  
  6b73355a3b7536d68d2e2dd0aea05b46
- SHA1
  
  1705370b8287ba7de6619592ff65a47bf25d4e19
- SHA256
  
  f0cfa0f8ec1f428286d94912cb40f36b235623be37497c1c86fa3ba35d2f8f79
- SHA512
  
  9703d804be2d0420712974bbeac643c71dfc5ce139c48820853f194d1ffbf42813591169c392d66c77bf99db65ceaa419f502cd47ad6966f30ad707fa10a2213
- SSDEEP
  
  98304:VXmbiSRjzrxXDw9RbeXcpNUNXlJBAUZL2:Ai4tDwWXcMN1JVa
Score

7^/10

persistence
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2