d32a2bac2a9b437e6b23728ac87c683e78fed1b1907498e3a5c7a9084b1eda23 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d32a2bac2a9b437e6b23728ac87c683e78fed1b1907498e3a5c7a9084b1eda23
Size

208KB
Sample

221203-zyfveaee93
MD5

4b65f7fb23a27b56226561fcdb99849a
SHA1

8190988f94f7ac4d2ad7ee775241f35de92a80ef
SHA256

d32a2bac2a9b437e6b23728ac87c683e78fed1b1907498e3a5c7a9084b1eda23
SHA512

a4b6c1e96ababc8257c15c0f1000f55faa7625f021dc198282cf5e7edf3ad173b90ddf199f86424be2663147967c26cd5d66b551b98ff017dec2ff9d26318ab7
SSDEEP

3072:DwTzmXT7oYlDdKAwFXXx3izcSfws/O3aG8ZzieakBRv+lixUcETfV3nj:SiD7UAwFXB30fwsBJegTOcEL1

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  d32a2bac2a9b437e6b23728ac87c683e78fed1b1907498e3a5c7a9084b1eda23
- Size
  
  208KB
- MD5
  
  4b65f7fb23a27b56226561fcdb99849a
- SHA1
  
  8190988f94f7ac4d2ad7ee775241f35de92a80ef
- SHA256
  
  d32a2bac2a9b437e6b23728ac87c683e78fed1b1907498e3a5c7a9084b1eda23
- SHA512
  
  a4b6c1e96ababc8257c15c0f1000f55faa7625f021dc198282cf5e7edf3ad173b90ddf199f86424be2663147967c26cd5d66b551b98ff017dec2ff9d26318ab7
- SSDEEP
  
  3072:DwTzmXT7oYlDdKAwFXXx3izcSfws/O3aG8ZzieakBRv+lixUcETfV3nj:SiD7UAwFXB30fwsBJegTOcEL1
Score

8^/10

persistence
- Executes dropped EXE
- Deletes itself
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Remote System Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2