d59f4c6c9f4a687b7e427ce17b4b0e1551beb4851a71d092529dc7d1d73bc801 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d59f4c6c9f4a687b7e427ce17b4b0e1551beb4851a71d092529dc7d1d73bc801
Size

46KB
Sample

221204-aferysdd5t
MD5

97b4ec3c249e5ea219381ccd2395d60a
SHA1

99514bbaba1b5fb8272a1c6bbdbf705f8903abbc
SHA256

d59f4c6c9f4a687b7e427ce17b4b0e1551beb4851a71d092529dc7d1d73bc801
SHA512

2e623cdb8a19257836bf7f64bca992493818b11db5301501eb1a531b8ccddab674ddcdb5ae25da548bf24f09399bd841a3d9a656e02cbd150976e82a115e5e63
SSDEEP

768:wh5TjMJ6IN4724Hdhy7fT4owiNo5h9BV9JopdzWSTPXdK:45TQJhN4nHC7r12NjLqkSrXdK

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  d59f4c6c9f4a687b7e427ce17b4b0e1551beb4851a71d092529dc7d1d73bc801
- Size
  
  46KB
- MD5
  
  97b4ec3c249e5ea219381ccd2395d60a
- SHA1
  
  99514bbaba1b5fb8272a1c6bbdbf705f8903abbc
- SHA256
  
  d59f4c6c9f4a687b7e427ce17b4b0e1551beb4851a71d092529dc7d1d73bc801
- SHA512
  
  2e623cdb8a19257836bf7f64bca992493818b11db5301501eb1a531b8ccddab674ddcdb5ae25da548bf24f09399bd841a3d9a656e02cbd150976e82a115e5e63
- SSDEEP
  
  768:wh5TjMJ6IN4724Hdhy7fT4owiNo5h9BV9JopdzWSTPXdK:45TQJhN4nHC7r12NjLqkSrXdK
Score

8^/10

persistence
- Drops file in Drivers directory
- Sets service image path in registry
  persistence
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2