a94d0373e22e66104b2005dce6710f89d3eddc0a02a40d8c049178fa4842b20f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a94d0373e22e66104b2005dce6710f89d3eddc0a02a40d8c049178fa4842b20f
Size

31KB
Sample

221202-2bls9adg3y
MD5

103989a9e3cffb6be6670bb51140c560
SHA1

470fa8bcd1bd275ac765dd602b4b500a1caacbbf
SHA256

a94d0373e22e66104b2005dce6710f89d3eddc0a02a40d8c049178fa4842b20f
SHA512

9baa7e02c7a9dbc6c7155c03ed626122335018d559d75b436e9d54f8dff88442ad60be95de70553a44c3ed308aae1d9541ceeee703da54e8bd1d5720a36327fb
SSDEEP

384:DgtCIKJbqX10XDrjbxq2hxs4M9gym5bfaAD3H0zYiwHCFn1el9TSs3G8UyW:DgL1wX+h9ipfaADEzxQSs3E

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  a94d0373e22e66104b2005dce6710f89d3eddc0a02a40d8c049178fa4842b20f
- Size
  
  31KB
- MD5
  
  103989a9e3cffb6be6670bb51140c560
- SHA1
  
  470fa8bcd1bd275ac765dd602b4b500a1caacbbf
- SHA256
  
  a94d0373e22e66104b2005dce6710f89d3eddc0a02a40d8c049178fa4842b20f
- SHA512
  
  9baa7e02c7a9dbc6c7155c03ed626122335018d559d75b436e9d54f8dff88442ad60be95de70553a44c3ed308aae1d9541ceeee703da54e8bd1d5720a36327fb
- SSDEEP
  
  384:DgtCIKJbqX10XDrjbxq2hxs4M9gym5bfaAD3H0zYiwHCFn1el9TSs3G8UyW:DgL1wX+h9ipfaADEzxQSs3E
Score

8^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2