73fca94679d2eda9e3c0fd8f6175e8f3df6423e3cb59f51f1addbc6723e037f8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

73fca94679d2eda9e3c0fd8f6175e8f3df6423e3cb59f51f1addbc6723e037f8
Size

100KB
Sample

221201-dsfrkade7y
MD5

77f4371335887559aeb12e0e88826cc6
SHA1

db898b24238ab9f3350aa402dcaf3527dd2b8287
SHA256

73fca94679d2eda9e3c0fd8f6175e8f3df6423e3cb59f51f1addbc6723e037f8
SHA512

aaf407df46bc817a33913befb3464b5b1ae6a725c741522f80d605ac42e8433ee377e71b7716a109285bde8be97f7a82a2a8f78fc1becf0e5ad29a9e5f6d1891
SSDEEP

1536:JTpxQaklLkdbbCzJ7VyzypXbPvt/eZHcpUAIznWcLKf67OWugLrpp+:JGlLEDAIznZKCoYm

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  73fca94679d2eda9e3c0fd8f6175e8f3df6423e3cb59f51f1addbc6723e037f8
- Size
  
  100KB
- MD5
  
  77f4371335887559aeb12e0e88826cc6
- SHA1
  
  db898b24238ab9f3350aa402dcaf3527dd2b8287
- SHA256
  
  73fca94679d2eda9e3c0fd8f6175e8f3df6423e3cb59f51f1addbc6723e037f8
- SHA512
  
  aaf407df46bc817a33913befb3464b5b1ae6a725c741522f80d605ac42e8433ee377e71b7716a109285bde8be97f7a82a2a8f78fc1becf0e5ad29a9e5f6d1891
- SSDEEP
  
  1536:JTpxQaklLkdbbCzJ7VyzypXbPvt/eZHcpUAIznWcLKf67OWugLrpp+:JGlLEDAIznZKCoYm
Score

8^/10

persistence
- Sets DLL path for service in the registry
  persistence
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2