4b56d0b0c8c52803bf7c21587bd98a16f73f0d6ed4e4153eee1964533ac394ee | Triage

Sharing

Copy URL Twitter E-mail

General

Target

tmp
Size

10KB
Sample

221124-ktghtafd41
MD5

d8ecc1fd1deb6c69a39bbae5c2c4e528
SHA1

9abce16698a70cf118a251a00ba550122ad31102
SHA256

4b56d0b0c8c52803bf7c21587bd98a16f73f0d6ed4e4153eee1964533ac394ee
SHA512

7c00e5d84b5e6b5b8ac4e9bd1b1490db6cb1888c48f74946cc218954a1be30030360dc1fad35d7cd8e6909c58a0d201111ef8dc5416462378646c8bebc218ab7
SSDEEP

192:V8WNyBKkeqbOABDNDZP1oynVeMLkWS+E/Q+VIKiIidEiv:lNyxeqFBl1XeMQWS+E/Q+VXiWiv

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  tmp
- Size
  
  10KB
- MD5
  
  d8ecc1fd1deb6c69a39bbae5c2c4e528
- SHA1
  
  9abce16698a70cf118a251a00ba550122ad31102
- SHA256
  
  4b56d0b0c8c52803bf7c21587bd98a16f73f0d6ed4e4153eee1964533ac394ee
- SHA512
  
  7c00e5d84b5e6b5b8ac4e9bd1b1490db6cb1888c48f74946cc218954a1be30030360dc1fad35d7cd8e6909c58a0d201111ef8dc5416462378646c8bebc218ab7
- SSDEEP
  
  192:V8WNyBKkeqbOABDNDZP1oynVeMLkWS+E/Q+VIKiIidEiv:lNyxeqFBl1XeMQWS+E/Q+VXiWiv
Score

8^/10

persistence
- Downloads MZ/PE file
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2