730aec68edb3a1070aaae69013d651e98978f8b32a6afbc17a84a7f4d65b833a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

730aec68edb3a1070aaae69013d651e98978f8b32a6afbc17a84a7f4d65b833a
Size

266KB
Sample

221204-b284csag8y
MD5

01fa7d50d0ad006eb7798f99d6296030
SHA1

56dc1b5048472f769e1b23ca01a77baa6da35d35
SHA256

730aec68edb3a1070aaae69013d651e98978f8b32a6afbc17a84a7f4d65b833a
SHA512

3ac06388a582efdf56162bfd8981b466770e9bb2d6996d777ebcf2bdbce5d40534dbd5c9a57677346dd63fd7b202e8c76279500a5e44642bb16fd5e3b2a3afb7
SSDEEP

6144:n1eWMXGe+OqABTPYhh/A/zt8LLDh9nWxBVaRF:C+OqABTPYUpkZ9WxBYF

Score

9^/10

persistence

Malware Config

Targets

- Target
  
  730aec68edb3a1070aaae69013d651e98978f8b32a6afbc17a84a7f4d65b833a
- Size
  
  266KB
- MD5
  
  01fa7d50d0ad006eb7798f99d6296030
- SHA1
  
  56dc1b5048472f769e1b23ca01a77baa6da35d35
- SHA256
  
  730aec68edb3a1070aaae69013d651e98978f8b32a6afbc17a84a7f4d65b833a
- SHA512
  
  3ac06388a582efdf56162bfd8981b466770e9bb2d6996d777ebcf2bdbce5d40534dbd5c9a57677346dd63fd7b202e8c76279500a5e44642bb16fd5e3b2a3afb7
- SSDEEP
  
  6144:n1eWMXGe+OqABTPYhh/A/zt8LLDh9nWxBVaRF:C+OqABTPYUpkZ9WxBYF
Score

9^/10

persistence
- ACProtect 1.3x - 1.4x DLL software
  Detects file using ACProtect software.
- Sets service image path in registry
  persistence
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2