de295c417b505d475280a0247c8786a3b73fff987090de8954f57e454fcfb028 | Triage

Sharing

General

Target

de295c417b505d475280a0247c8786a3b73fff987090de8954f57e454fcfb028
Size

1.6MB
Sample

221125-1tcsmacf6v
MD5

aa170b937b6db142ad42b2771ebce387
SHA1

6fb8945883f2cc86f5d5ef61b6b34cc270f40340
SHA256

de295c417b505d475280a0247c8786a3b73fff987090de8954f57e454fcfb028
SHA512

d647e3635725f0f02538df36f2f6c1a50fab9f19fd476968089854c52c99319d8d798c61551ad97d2a5f4b6f56fec581aa3d362f9bb16b86284a44841bf27dbe
SSDEEP

24576:dNU0Ncda2IQ6KqD9n+9mu0QDcsDsRuYqTXwgKw4v1TuSSx2O8pn8p+:df66zx5QDctuSjGEO8188

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  de295c417b505d475280a0247c8786a3b73fff987090de8954f57e454fcfb028
- Size
  
  1.6MB
- MD5
  
  aa170b937b6db142ad42b2771ebce387
- SHA1
  
  6fb8945883f2cc86f5d5ef61b6b34cc270f40340
- SHA256
  
  de295c417b505d475280a0247c8786a3b73fff987090de8954f57e454fcfb028
- SHA512
  
  d647e3635725f0f02538df36f2f6c1a50fab9f19fd476968089854c52c99319d8d798c61551ad97d2a5f4b6f56fec581aa3d362f9bb16b86284a44841bf27dbe
- SSDEEP
  
  24576:dNU0Ncda2IQ6KqD9n+9mu0QDcsDsRuYqTXwgKw4v1TuSSx2O8pn8p+:df66zx5QDctuSjGEO8188
Score

8^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2