gh0strat | ff26fdec1643581fea34d657bc5dd2a51646500a99c15341a2ee966d2e80e810 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ff26fdec1643581fea34d657bc5dd2a51646500a99c15341a2ee966d2e80e810
Size

114KB
Sample

221123-y3pgnsbg77
MD5

00a28b42fa4a63ceea44cc677c7b7f71
SHA1

cf159f90a79d51344f234ed0da1944fcaa980238
SHA256

ff26fdec1643581fea34d657bc5dd2a51646500a99c15341a2ee966d2e80e810
SHA512

cf26bfe647f0ebc9f88ac7de2b131d761eccaf6d33a24f1ddd489888bbc82c3746e6849414af35f7ea14fedd2537133aa0aefd690d67808f4bca67b7c2f37415
SSDEEP

3072:IdpgMxsdSyg4TvtcMk8Lyzb8ckivlu5KoiCbmN:Mpl2GkGMkSgb8Svlu5KoON

Score

10^/10

gh0strat persistence

Malware Config

Targets

- Target
  
  ff26fdec1643581fea34d657bc5dd2a51646500a99c15341a2ee966d2e80e810
- Size
  
  114KB
- MD5
  
  00a28b42fa4a63ceea44cc677c7b7f71
- SHA1
  
  cf159f90a79d51344f234ed0da1944fcaa980238
- SHA256
  
  ff26fdec1643581fea34d657bc5dd2a51646500a99c15341a2ee966d2e80e810
- SHA512
  
  cf26bfe647f0ebc9f88ac7de2b131d761eccaf6d33a24f1ddd489888bbc82c3746e6849414af35f7ea14fedd2537133aa0aefd690d67808f4bca67b7c2f37415
- SSDEEP
  
  3072:IdpgMxsdSyg4TvtcMk8Lyzb8ckivlu5KoiCbmN:Mpl2GkGMkSgb8Svlu5KoON
Score

8^/10

persistence
- Modifies Installed Components in the registry
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2