7f5bc40b0116497652dbd25d53ecd35364a218ed42fb53f0929e2d2c0e097a79 | Triage

Sharing

General

Target

7f5bc40b0116497652dbd25d53ecd35364a218ed42fb53f0929e2d2c0e097a79
Size

233KB
Sample

221201-c716dabg91
MD5

1b173632ce8c8478d9a4b3c3a3b53b60
SHA1

25b5c15bb8a70afc440e8cecf93b85d4e36cdcd9
SHA256

7f5bc40b0116497652dbd25d53ecd35364a218ed42fb53f0929e2d2c0e097a79
SHA512

6da423a1a21b6e22ec89dec18b4502ea367bc34de465022e3fbac11b4c855aac510097e6277065d8e967ce382282df9d9ad48b8042570b48349fdf0331818c9f
SSDEEP

3072:2Qadi1TFsLSLZwL4vxu587buCd7OWx9WLak0M1zLlUrbrqBJ4I/cQ5NYd4OpAidT:2XIr9wuu5895j/I10M1E/c0byMPKtunD

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  7f5bc40b0116497652dbd25d53ecd35364a218ed42fb53f0929e2d2c0e097a79
- Size
  
  233KB
- MD5
  
  1b173632ce8c8478d9a4b3c3a3b53b60
- SHA1
  
  25b5c15bb8a70afc440e8cecf93b85d4e36cdcd9
- SHA256
  
  7f5bc40b0116497652dbd25d53ecd35364a218ed42fb53f0929e2d2c0e097a79
- SHA512
  
  6da423a1a21b6e22ec89dec18b4502ea367bc34de465022e3fbac11b4c855aac510097e6277065d8e967ce382282df9d9ad48b8042570b48349fdf0331818c9f
- SSDEEP
  
  3072:2Qadi1TFsLSLZwL4vxu587buCd7OWx9WLak0M1zLlUrbrqBJ4I/cQ5NYd4OpAidT:2XIr9wuu5895j/I10M1E/c0byMPKtunD
Score

8^/10

persistence
- Modifies AppInit DLL entries
  persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2