41ab1c21417c8d37e07c54fe1e85fb0bef91c223ab642b5e33ba0d7fa763e45b | Triage

Sharing

General

Target

41ab1c21417c8d37e07c54fe1e85fb0bef91c223ab642b5e33ba0d7fa763e45b
Size

113KB
Sample

221125-ctjzyaed59
MD5

6af599deeaf199cdf32ea93716372c09
SHA1

d3d0f5ebed16506043cf688b2694d6fc4ff514e1
SHA256

41ab1c21417c8d37e07c54fe1e85fb0bef91c223ab642b5e33ba0d7fa763e45b
SHA512

180aae1a4b75390df4a369625b462c0b9b07bc2f4018062e68218898688f14fa157c14349ec1b1edf357a034c1b5aed5c8ba27314906e72724fbd7b4d755d31c
SSDEEP

3072:2staaA+YXYDWdN+DwiwuP/xzKtL91LVrwk2E0o3s:ftWODWdA1ZKtL91pMkyo

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  41ab1c21417c8d37e07c54fe1e85fb0bef91c223ab642b5e33ba0d7fa763e45b
- Size
  
  113KB
- MD5
  
  6af599deeaf199cdf32ea93716372c09
- SHA1
  
  d3d0f5ebed16506043cf688b2694d6fc4ff514e1
- SHA256
  
  41ab1c21417c8d37e07c54fe1e85fb0bef91c223ab642b5e33ba0d7fa763e45b
- SHA512
  
  180aae1a4b75390df4a369625b462c0b9b07bc2f4018062e68218898688f14fa157c14349ec1b1edf357a034c1b5aed5c8ba27314906e72724fbd7b4d755d31c
- SSDEEP
  
  3072:2staaA+YXYDWdN+DwiwuP/xzKtL91LVrwk2E0o3s:ftWODWdA1ZKtL91pMkyo
Score

7^/10

persistence
- Deletes itself
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2