90e681fefa1d883a071ec1bfe3c5faf1f4d184c88754e8865bc56e16573ceb33 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

90e681fefa1d883a071ec1bfe3c5faf1f4d184c88754e8865bc56e16573ceb33
Size

309KB
Sample

221204-dkyx6sfc2z
MD5

ca8d831cea3aa06df7b4ecbbd36721d1
SHA1

065372c59531e3a7671e2e2238566a2a5a003d38
SHA256

90e681fefa1d883a071ec1bfe3c5faf1f4d184c88754e8865bc56e16573ceb33
SHA512

4164f945564ec98a3c92597effb6a0fc63a90e02d21cc5835f69728e208d79d446ed9e4d199ea1490d6b5406ac4dca3925872dfb1cf5b1361aaa9b270c684a8f
SSDEEP

6144:7YkGGpLYfeCecWuhbc0S+wqRDRgNZMcJIsQLLoWQSgLz1jZ7FprSiZ:rbwfRwbURO7MIIsQLLoWQVfJvpus

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  90e681fefa1d883a071ec1bfe3c5faf1f4d184c88754e8865bc56e16573ceb33
- Size
  
  309KB
- MD5
  
  ca8d831cea3aa06df7b4ecbbd36721d1
- SHA1
  
  065372c59531e3a7671e2e2238566a2a5a003d38
- SHA256
  
  90e681fefa1d883a071ec1bfe3c5faf1f4d184c88754e8865bc56e16573ceb33
- SHA512
  
  4164f945564ec98a3c92597effb6a0fc63a90e02d21cc5835f69728e208d79d446ed9e4d199ea1490d6b5406ac4dca3925872dfb1cf5b1361aaa9b270c684a8f
- SSDEEP
  
  6144:7YkGGpLYfeCecWuhbc0S+wqRDRgNZMcJIsQLLoWQSgLz1jZ7FprSiZ:rbwfRwbURO7MIIsQLLoWQVfJvpus
Score

8^/10

persistence
- Executes dropped EXE
- Deletes itself
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2