dd36e0274717b91507b00b0ce35ef28669739958c7e0db2c94671b3c4258c228 | Triage

Sharing

General

Target

dd36e0274717b91507b00b0ce35ef28669739958c7e0db2c94671b3c4258c228
Size

7KB
Sample

221201-k37flagf9x
MD5

dd8ff67f3f997d2d0ed7e5638b200411
SHA1

35ceb758db8984d2549bd24f702db74717540a88
SHA256

dd36e0274717b91507b00b0ce35ef28669739958c7e0db2c94671b3c4258c228
SHA512

43c97275daf24087fa1a3e2f51e0f9d71b9dcc8cfe4a17af91dcbbe0699f22d30e31e221d241ca5f64dde88487a24c1b048a604a996a82cbd0fea10e1762fd34
SSDEEP

192:aeIZpTxEZzsgG+qxTiHf8v3HmYIPvij5/agJD116bO0X:dETeq9+qsEPmBP8agR114nX

Score

6^/10

discovery persistence

Malware Config

Targets

- Target
  
  dd36e0274717b91507b00b0ce35ef28669739958c7e0db2c94671b3c4258c228
- Size
  
  7KB
- MD5
  
  dd8ff67f3f997d2d0ed7e5638b200411
- SHA1
  
  35ceb758db8984d2549bd24f702db74717540a88
- SHA256
  
  dd36e0274717b91507b00b0ce35ef28669739958c7e0db2c94671b3c4258c228
- SHA512
  
  43c97275daf24087fa1a3e2f51e0f9d71b9dcc8cfe4a17af91dcbbe0699f22d30e31e221d241ca5f64dde88487a24c1b048a604a996a82cbd0fea10e1762fd34
- SSDEEP
  
  192:aeIZpTxEZzsgG+qxTiHf8v3HmYIPvij5/agJD116bO0X:dETeq9+qsEPmBP8agR114nX
Score

6^/10

discovery persistence
- Adds Run key to start application
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2