b209a79726a0facadc8a530b9fb35a343f4c47b55abe2b142d9c473a46e54029 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b209a79726a0facadc8a530b9fb35a343f4c47b55abe2b142d9c473a46e54029
Size

24KB
Sample

221203-hz3bcshg2z
MD5

ab3df3b722b433b06528cede21df6c20
SHA1

b11fcfa33a623bde554913f1e2557eb951aa5473
SHA256

b209a79726a0facadc8a530b9fb35a343f4c47b55abe2b142d9c473a46e54029
SHA512

25861b0572955c30dfef79b2b5da99f1228c6638d001214fd43aa38f6bcff43aabc099d8a6297ab8f9b62e5940921d3868aac3a7616c01e79fd6cf29390f4c88
SSDEEP

768:9SEulevXbpjPkz70PjPs7qQYkwlJLMoiu:rusDpad7skq2u

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  b209a79726a0facadc8a530b9fb35a343f4c47b55abe2b142d9c473a46e54029
- Size
  
  24KB
- MD5
  
  ab3df3b722b433b06528cede21df6c20
- SHA1
  
  b11fcfa33a623bde554913f1e2557eb951aa5473
- SHA256
  
  b209a79726a0facadc8a530b9fb35a343f4c47b55abe2b142d9c473a46e54029
- SHA512
  
  25861b0572955c30dfef79b2b5da99f1228c6638d001214fd43aa38f6bcff43aabc099d8a6297ab8f9b62e5940921d3868aac3a7616c01e79fd6cf29390f4c88
- SSDEEP
  
  768:9SEulevXbpjPkz70PjPs7qQYkwlJLMoiu:rusDpad7skq2u
Score

7^/10

persistence
- Drops startup file
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2