2abef16f266b12024595fc5d7f601ab18194be01c5ad0d61dd56b21cb8648d33 | Triage

Sharing

General

Target

2abef16f266b12024595fc5d7f601ab18194be01c5ad0d61dd56b21cb8648d33
Size

424KB
Sample

221127-jx5jdafa8x
MD5

9050ed4005f7064f7eaa124329863259
SHA1

401bed8a4e3f3d80c4380201b9c7c707990e5534
SHA256

2abef16f266b12024595fc5d7f601ab18194be01c5ad0d61dd56b21cb8648d33
SHA512

36c25217c9fdbb5f5de70bb99e25773710d32e364bd701121892a7ed93e38b644d337dac8af8f40d7aa280d0a21420cdfcf8101a6a0a02d93cdb935740f03ed5
SSDEEP

6144:7sbk43khndRYOPbIU24jOSw57Vup8wU6emfBkWsM+0JQn:NYKRhbJoNV5wU6HkZM/Q

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  2abef16f266b12024595fc5d7f601ab18194be01c5ad0d61dd56b21cb8648d33
- Size
  
  424KB
- MD5
  
  9050ed4005f7064f7eaa124329863259
- SHA1
  
  401bed8a4e3f3d80c4380201b9c7c707990e5534
- SHA256
  
  2abef16f266b12024595fc5d7f601ab18194be01c5ad0d61dd56b21cb8648d33
- SHA512
  
  36c25217c9fdbb5f5de70bb99e25773710d32e364bd701121892a7ed93e38b644d337dac8af8f40d7aa280d0a21420cdfcf8101a6a0a02d93cdb935740f03ed5
- SSDEEP
  
  6144:7sbk43khndRYOPbIU24jOSw57Vup8wU6emfBkWsM+0JQn:NYKRhbJoNV5wU6HkZM/Q
Score

8^/10

persistence
- Executes dropped EXE
- Deletes itself
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Remote System Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2