98b2c86cb83d5ea790d7d61f175fd33f5a1d069cf2de3c8499d30f479b8b46b2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

98b2c86cb83d5ea790d7d61f175fd33f5a1d069cf2de3c8499d30f479b8b46b2
Size

6.0MB
Sample

221127-z2c8pahg27
MD5

100b99f7bc89b82a4dd5a328d28ad2c6
SHA1

6713f0680d10349ea4dfccd9b2aed561e3999e34
SHA256

98b2c86cb83d5ea790d7d61f175fd33f5a1d069cf2de3c8499d30f479b8b46b2
SHA512

8e4b520d45c8730244de71619dff422bd46457d639986fcca126b212d84b460bc769791ebb1f989a83a3c6d7d37bab62fe18c10573e6c7bcbb13c2664eb4b064
SSDEEP

98304:kevyjt4HDd7Vl4twi5VIa34s5Hfvtr/62Y6tPYlJpZGCvJpv9bORq0:zvzHpBm6sIw3tTGJpzw

Score

8^/10

discovery persistence

Malware Config

Targets

- Target
  
  98b2c86cb83d5ea790d7d61f175fd33f5a1d069cf2de3c8499d30f479b8b46b2
- Size
  
  6.0MB
- MD5
  
  100b99f7bc89b82a4dd5a328d28ad2c6
- SHA1
  
  6713f0680d10349ea4dfccd9b2aed561e3999e34
- SHA256
  
  98b2c86cb83d5ea790d7d61f175fd33f5a1d069cf2de3c8499d30f479b8b46b2
- SHA512
  
  8e4b520d45c8730244de71619dff422bd46457d639986fcca126b212d84b460bc769791ebb1f989a83a3c6d7d37bab62fe18c10573e6c7bcbb13c2664eb4b064
- SSDEEP
  
  98304:kevyjt4HDd7Vl4twi5VIa34s5Hfvtr/62Y6tPYlJpZGCvJpv9bORq0:zvzHpBm6sIw3tTGJpzw
Score

8^/10

discovery persistence
- Modifies AppInit DLL entries
  persistence
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence