7b06b55321fc80a3c0047a9a158e37bc1383ad8294940e1b0c8628aa2fa01c44 | Triage

Sharing

General

Target

7b06b55321fc80a3c0047a9a158e37bc1383ad8294940e1b0c8628aa2fa01c44
Size

203KB
Sample

221129-h4ze9sbd91
MD5

ec31c7b2f853827ccd78c573265f9c3f
SHA1

c006b12716ef9fce677aad9ab99984492adc3fd2
SHA256

7b06b55321fc80a3c0047a9a158e37bc1383ad8294940e1b0c8628aa2fa01c44
SHA512

9df0a12462ea635efc9487bab993292cfd5fa1d2eda87cfaae37a3f00a6401012886ecc616bf9d8c8b3a77ec808da709a92099617ea230fe3ef69337469a0e75
SSDEEP

6144:TXD8eWfctN54ehNrXTYIE3QcFmms3yKimtSp:TXD8eW0tnYIEAec3M

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  7b06b55321fc80a3c0047a9a158e37bc1383ad8294940e1b0c8628aa2fa01c44
- Size
  
  203KB
- MD5
  
  ec31c7b2f853827ccd78c573265f9c3f
- SHA1
  
  c006b12716ef9fce677aad9ab99984492adc3fd2
- SHA256
  
  7b06b55321fc80a3c0047a9a158e37bc1383ad8294940e1b0c8628aa2fa01c44
- SHA512
  
  9df0a12462ea635efc9487bab993292cfd5fa1d2eda87cfaae37a3f00a6401012886ecc616bf9d8c8b3a77ec808da709a92099617ea230fe3ef69337469a0e75
- SSDEEP
  
  6144:TXD8eWfctN54ehNrXTYIE3QcFmms3yKimtSp:TXD8eW0tnYIEAec3M
Score

8^/10

persistence
- Executes dropped EXE
- Sets DLL path for service in the registry
  persistence
- Sets service image path in registry
  persistence
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2