1b72a285cab6c42a969cb3f14e64c31eb38800d3c354589b1a9d5f0e042549c9 | Triage

Sharing

General

Target

1b72a285cab6c42a969cb3f14e64c31eb38800d3c354589b1a9d5f0e042549c9
Size

179KB
Sample

221128-ek648adb93
MD5

1ee116e38cc5709401e181495991811d
SHA1

6b4fae97c212a4cdab1be2f480797b53784d0210
SHA256

1b72a285cab6c42a969cb3f14e64c31eb38800d3c354589b1a9d5f0e042549c9
SHA512

cd37518399cf9299a77f64907b4e843744e65ea1cec3b293835d35e1e59278fbc93e17bce82d984de32110172459a8d3441895a6e80976aaa0ecfaa498db1386
SSDEEP

3072:6JIRH8MiBKlghdTeDco1Hxbu30/BLEypsLS88:MsH8MgrTeVN/tEyps

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  1b72a285cab6c42a969cb3f14e64c31eb38800d3c354589b1a9d5f0e042549c9
- Size
  
  179KB
- MD5
  
  1ee116e38cc5709401e181495991811d
- SHA1
  
  6b4fae97c212a4cdab1be2f480797b53784d0210
- SHA256
  
  1b72a285cab6c42a969cb3f14e64c31eb38800d3c354589b1a9d5f0e042549c9
- SHA512
  
  cd37518399cf9299a77f64907b4e843744e65ea1cec3b293835d35e1e59278fbc93e17bce82d984de32110172459a8d3441895a6e80976aaa0ecfaa498db1386
- SSDEEP
  
  3072:6JIRH8MiBKlghdTeDco1Hxbu30/BLEypsLS88:MsH8MgrTeVN/tEyps
Score

8^/10

persistence
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2