201568057580f2f4b78198141909827638e3a308814025d53e07d687723fd5d2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

201568057580f2f4b78198141909827638e3a308814025d53e07d687723fd5d2
Size

5.8MB
Sample

221127-1r1rnsfd81
MD5

f50c935b2cbba28e115f9fb890668595
SHA1

af9e338d8b043c4b63094cdd1a53c060fccc268f
SHA256

201568057580f2f4b78198141909827638e3a308814025d53e07d687723fd5d2
SHA512

11557d1b8d3a76e82f42a0c8eb618e0d98ef00d54cc2b5c56bdaa833e9a1760253ffebc473a4f58da81b1f1e13e49cde1b0dadadff95ec7afbad70122c1b653c
SSDEEP

98304:Gl5xEFVGfsbIOx43pcfJB4OjltH5QI/DZgVwBq8GtjzTg1dABMB2k36Dn:Gjx4VGfgDx43pcPn5QI7ZjBdGFgTAB2K

Score

8^/10

discovery persistence

Malware Config

Targets

- Target
  
  201568057580f2f4b78198141909827638e3a308814025d53e07d687723fd5d2
- Size
  
  5.8MB
- MD5
  
  f50c935b2cbba28e115f9fb890668595
- SHA1
  
  af9e338d8b043c4b63094cdd1a53c060fccc268f
- SHA256
  
  201568057580f2f4b78198141909827638e3a308814025d53e07d687723fd5d2
- SHA512
  
  11557d1b8d3a76e82f42a0c8eb618e0d98ef00d54cc2b5c56bdaa833e9a1760253ffebc473a4f58da81b1f1e13e49cde1b0dadadff95ec7afbad70122c1b653c
- SSDEEP
  
  98304:Gl5xEFVGfsbIOx43pcfJB4OjltH5QI/DZgVwBq8GtjzTg1dABMB2k36Dn:Gjx4VGfgDx43pcPn5QI7ZjBdGFgTAB2K
Score

8^/10

discovery persistence
- Modifies AppInit DLL entries
  persistence
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence