9ad0f16457d662a5a2eb2aaf515d978cadc2d411ce2a395e8fd31d4bf1924cbd | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9ad0f16457d662a5a2eb2aaf515d978cadc2d411ce2a395e8fd31d4bf1924cbd
Size

308KB
Sample

221125-3pa5cafc69
MD5

b73006a59d9f6cdc0f524c83f21bd90c
SHA1

cb14811330b27e44a9c4a14592dffad06de3f811
SHA256

9ad0f16457d662a5a2eb2aaf515d978cadc2d411ce2a395e8fd31d4bf1924cbd
SHA512

40f1dd9b8c8efb3ddaad53e6f0f3e083eddd4c6a3e6f350a04b412b2fc3c541c3868f6faeaf1a6e57863a71c0feb2660e6f6b9740ccef0c8ff562c409ebde796
SSDEEP

6144:rUYcgU2zWFngxFQLAsdUslR7vKVFzrRexksZXNBIPrt5l:PcgU6WFDj+4LKHzNeb9OPrt

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  9ad0f16457d662a5a2eb2aaf515d978cadc2d411ce2a395e8fd31d4bf1924cbd
- Size
  
  308KB
- MD5
  
  b73006a59d9f6cdc0f524c83f21bd90c
- SHA1
  
  cb14811330b27e44a9c4a14592dffad06de3f811
- SHA256
  
  9ad0f16457d662a5a2eb2aaf515d978cadc2d411ce2a395e8fd31d4bf1924cbd
- SHA512
  
  40f1dd9b8c8efb3ddaad53e6f0f3e083eddd4c6a3e6f350a04b412b2fc3c541c3868f6faeaf1a6e57863a71c0feb2660e6f6b9740ccef0c8ff562c409ebde796
- SSDEEP
  
  6144:rUYcgU2zWFngxFQLAsdUslR7vKVFzrRexksZXNBIPrt5l:PcgU6WFDj+4LKHzNeb9OPrt
Score

8^/10

persistence
- Executes dropped EXE
- Deletes itself
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Remote System Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2