0801df8723e1390de38fac0f18038bdcfd5af35c9b6e6874a26b2c9101a63754 | Triage

Sharing

General

Target

0801df8723e1390de38fac0f18038bdcfd5af35c9b6e6874a26b2c9101a63754
Size

244KB
Sample

221125-fyhjfsgg5x
MD5

50f4277e333bf31f59c58ca1952e5169
SHA1

d2932e6e19bd16fcb6c05eaceccf3704107ea48e
SHA256

0801df8723e1390de38fac0f18038bdcfd5af35c9b6e6874a26b2c9101a63754
SHA512

16abd975bf68e60c803deb409e6026f6f49748142cd394b3eb77d8be289728a18b810ae7b364940414f26f094aca923f24779fd335b9e471bca3d8ccd1905177
SSDEEP

3072:kaoNBNqkTgLXS0/fZptckZLokVPLxLatpOSXY8AwazJodKDwBp/LxE3OWBjT/9zw:SNKYujZfVPVLatcSI8AJzJCvjiBF2A2

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  0801df8723e1390de38fac0f18038bdcfd5af35c9b6e6874a26b2c9101a63754
- Size
  
  244KB
- MD5
  
  50f4277e333bf31f59c58ca1952e5169
- SHA1
  
  d2932e6e19bd16fcb6c05eaceccf3704107ea48e
- SHA256
  
  0801df8723e1390de38fac0f18038bdcfd5af35c9b6e6874a26b2c9101a63754
- SHA512
  
  16abd975bf68e60c803deb409e6026f6f49748142cd394b3eb77d8be289728a18b810ae7b364940414f26f094aca923f24779fd335b9e471bca3d8ccd1905177
- SSDEEP
  
  3072:kaoNBNqkTgLXS0/fZptckZLokVPLxLatpOSXY8AwazJodKDwBp/LxE3OWBjT/9zw:SNKYujZfVPVLatcSI8AJzJCvjiBF2A2
Score

8^/10

persistence
- Executes dropped EXE
- Modifies AppInit DLL entries
  persistence
- Deletes itself
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Hidden Files and Directories

Privilege Escalation

Defense Evasion

Modify Registry

Hidden Files and Directories

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2