355d389f2405add9e25050aab4c0dc8873ab36091ccfbdee7b2d500c97b85ab4 | Triage

Sharing

General

Target

355d389f2405add9e25050aab4c0dc8873ab36091ccfbdee7b2d500c97b85ab4
Size

340KB
Sample

221123-xpjtlaaf2z
MD5

9c263fc708bea8f63204214d53167178
SHA1

7b3bb56cddc390b2795db9054fd6590577e55c6a
SHA256

355d389f2405add9e25050aab4c0dc8873ab36091ccfbdee7b2d500c97b85ab4
SHA512

4269e45b9d08d1976324459e9c714c961bc241dccb2eee56d370a350a73fb56e5d2a9317c7012a6276f47da80c9df2c46dde8337268de205d546f1aa578015bc
SSDEEP

6144:u9fWIJGsgB9OSpAvi4oUsfv2t6iMx0mb8RWbJRQFp:krgB9j82k5nF

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  355d389f2405add9e25050aab4c0dc8873ab36091ccfbdee7b2d500c97b85ab4
- Size
  
  340KB
- MD5
  
  9c263fc708bea8f63204214d53167178
- SHA1
  
  7b3bb56cddc390b2795db9054fd6590577e55c6a
- SHA256
  
  355d389f2405add9e25050aab4c0dc8873ab36091ccfbdee7b2d500c97b85ab4
- SHA512
  
  4269e45b9d08d1976324459e9c714c961bc241dccb2eee56d370a350a73fb56e5d2a9317c7012a6276f47da80c9df2c46dde8337268de205d546f1aa578015bc
- SSDEEP
  
  6144:u9fWIJGsgB9OSpAvi4oUsfv2t6iMx0mb8RWbJRQFp:krgB9j82k5nF
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Web Service

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2