d4b35e677351055d1d4ea0237f189042945108329f04211643e0c84aa65ad9c1 | Triage

Sharing

General

Target

d4b35e677351055d1d4ea0237f189042945108329f04211643e0c84aa65ad9c1
Size

63KB
Sample

221124-dhcbdsch47
MD5

ac0569464a8817dc6dbbafb6daf4ef0d
SHA1

90622529e549e1ed077a200bdf67ff9b90b3c273
SHA256

d4b35e677351055d1d4ea0237f189042945108329f04211643e0c84aa65ad9c1
SHA512

64bd1ed62c514ed8f572a399bed8865d4d770c4c7e031f26af74df3485a5f1c3c691b0bccc7146bb499f7642b5d92f7aa1f3bbb2508179ea7455b947867b5a29
SSDEEP

1536:/BXUmg9ujppHxFARYUPjjAv6fU6zvpL6YjXyFNtt:/BPFvU7jAv686rv+z

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  d4b35e677351055d1d4ea0237f189042945108329f04211643e0c84aa65ad9c1
- Size
  
  63KB
- MD5
  
  ac0569464a8817dc6dbbafb6daf4ef0d
- SHA1
  
  90622529e549e1ed077a200bdf67ff9b90b3c273
- SHA256
  
  d4b35e677351055d1d4ea0237f189042945108329f04211643e0c84aa65ad9c1
- SHA512
  
  64bd1ed62c514ed8f572a399bed8865d4d770c4c7e031f26af74df3485a5f1c3c691b0bccc7146bb499f7642b5d92f7aa1f3bbb2508179ea7455b947867b5a29
- SSDEEP
  
  1536:/BXUmg9ujppHxFARYUPjjAv6fU6zvpL6YjXyFNtt:/BPFvU7jAv686rv+z
Score

8^/10

persistence
- Sets DLL path for service in the registry
  persistence
- Deletes itself
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2