b1a2dba1838771dac05f2b68d50c9852bd69de3ccc4cf80d330afd62db90d779 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b1a2dba1838771dac05f2b68d50c9852bd69de3ccc4cf80d330afd62db90d779
Size

194KB
Sample

221204-llqxysbe7y
MD5

052ad7e725fec79c754266a872f54060
SHA1

4a572f46a8defea6ab774b84cb922ad8adfd60e3
SHA256

b1a2dba1838771dac05f2b68d50c9852bd69de3ccc4cf80d330afd62db90d779
SHA512

fac04244702622bf56d6197278bbce47ac7bb6cd6edf8f67a4a31738c9315b0fdecee30e5bb8de3c1f06f60a618dfc0c0c1eb4293bf62a5b8dbfe59b1881a306
SSDEEP

3072:BuIKgTsDAJJRjOJ7e8a5eCqKh5bWavuWLFZhh2D+0caj3kyRACzo:BuIzJJ27e8a5eCqKPZGWn9ozk

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  b1a2dba1838771dac05f2b68d50c9852bd69de3ccc4cf80d330afd62db90d779
- Size
  
  194KB
- MD5
  
  052ad7e725fec79c754266a872f54060
- SHA1
  
  4a572f46a8defea6ab774b84cb922ad8adfd60e3
- SHA256
  
  b1a2dba1838771dac05f2b68d50c9852bd69de3ccc4cf80d330afd62db90d779
- SHA512
  
  fac04244702622bf56d6197278bbce47ac7bb6cd6edf8f67a4a31738c9315b0fdecee30e5bb8de3c1f06f60a618dfc0c0c1eb4293bf62a5b8dbfe59b1881a306
- SSDEEP
  
  3072:BuIKgTsDAJJRjOJ7e8a5eCqKh5bWavuWLFZhh2D+0caj3kyRACzo:BuIzJJ27e8a5eCqKPZGWn9ozk
Score

8^/10

persistence
- Executes dropped EXE
- Modifies AppInit DLL entries
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2