93d577ec69d1917c39089fe51ecb3762c128812629988e6cd1cb13a07db30cc2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

93d577ec69d1917c39089fe51ecb3762c128812629988e6cd1cb13a07db30cc2
Size

138KB
Sample

221201-bf9g1aee6z
MD5

31d651df2130150b21c1488064239db0
SHA1

6928ab7c933e5f22c2d8164dc3b83ec81ca1252b
SHA256

93d577ec69d1917c39089fe51ecb3762c128812629988e6cd1cb13a07db30cc2
SHA512

14c29b9f65fdc48830d0826810966f948df24af86e301710282f7240798ffb9ddfdf7fb59ce5a1fe0ce663383c39fef060ac810b1590da67c2579792d631fc49
SSDEEP

3072:/UaoHTRyhoAScL060goOx+O/jrvnTEMRPOyCHkl6:HuTaGFgoNO/vvYMB3CHkl6

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  93d577ec69d1917c39089fe51ecb3762c128812629988e6cd1cb13a07db30cc2
- Size
  
  138KB
- MD5
  
  31d651df2130150b21c1488064239db0
- SHA1
  
  6928ab7c933e5f22c2d8164dc3b83ec81ca1252b
- SHA256
  
  93d577ec69d1917c39089fe51ecb3762c128812629988e6cd1cb13a07db30cc2
- SHA512
  
  14c29b9f65fdc48830d0826810966f948df24af86e301710282f7240798ffb9ddfdf7fb59ce5a1fe0ce663383c39fef060ac810b1590da67c2579792d631fc49
- SSDEEP
  
  3072:/UaoHTRyhoAScL060goOx+O/jrvnTEMRPOyCHkl6:HuTaGFgoNO/vvYMB3CHkl6
Score

8^/10

persistence
- Executes dropped EXE
- Modifies AppInit DLL entries
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2