557a26466e9fff1708d7c104a3be6ecb2605f134565b3b13d5a4ec4c80cea920 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

557a26466e9fff1708d7c104a3be6ecb2605f134565b3b13d5a4ec4c80cea920
Size

121KB
Sample

221201-pm9y1aga72
MD5

39853abd6e378e1ade27cba9d98d7cac
SHA1

48b05671cbe034296c7d850999f05fb6913bebaa
SHA256

557a26466e9fff1708d7c104a3be6ecb2605f134565b3b13d5a4ec4c80cea920
SHA512

d88a4e0f882ee5507f5fd98962bcf70dc6a5f94a34d98058a6831f9364ac7d5befcf67c16db598c5a5931562b2ec009f6ae11bf596492abb6d9a2b155f44b064
SSDEEP

3072:kuq65sZ9qO50Y0hGNy5S40cISVF50XsUU2Ohzkit:kuq655OaJ05uF508SuzL

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  557a26466e9fff1708d7c104a3be6ecb2605f134565b3b13d5a4ec4c80cea920
- Size
  
  121KB
- MD5
  
  39853abd6e378e1ade27cba9d98d7cac
- SHA1
  
  48b05671cbe034296c7d850999f05fb6913bebaa
- SHA256
  
  557a26466e9fff1708d7c104a3be6ecb2605f134565b3b13d5a4ec4c80cea920
- SHA512
  
  d88a4e0f882ee5507f5fd98962bcf70dc6a5f94a34d98058a6831f9364ac7d5befcf67c16db598c5a5931562b2ec009f6ae11bf596492abb6d9a2b155f44b064
- SSDEEP
  
  3072:kuq65sZ9qO50Y0hGNy5S40cISVF50XsUU2Ohzkit:kuq655OaJ05uF508SuzL
Score

8^/10

persistence
- Sets DLL path for service in the registry
  persistence
- Deletes itself
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2