f6c240178a52bea189fe710b47ed70ec55089e2a8f397868017379abb2ec2feb | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f6c240178a52bea189fe710b47ed70ec55089e2a8f397868017379abb2ec2feb
Size

92KB
Sample

221204-m9h3pach24
MD5

8af1ffe52df8a05be0b08428df218cb4
SHA1

5c77c3b9d9bd61912deb4a1c6b46dcbcc1fb23f2
SHA256

f6c240178a52bea189fe710b47ed70ec55089e2a8f397868017379abb2ec2feb
SHA512

61141ef7dc7b9b2b458a1330fae4ec683ff06e5a7f7d1179d582f59ce8f5c8453494e4295c5d45e6e5e761ae2db404e27b603b9d7a1c23d47c4eb31501e1d7d0
SSDEEP

1536:KpBKQVNmFvhjgPEWVFTo6imuqnd8FU900LcolzZASE1m1SXyFhJKOU4N5SG:KbK2XPnboNmuqnoU9JFk1TyFfprSG

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  f6c240178a52bea189fe710b47ed70ec55089e2a8f397868017379abb2ec2feb
- Size
  
  92KB
- MD5
  
  8af1ffe52df8a05be0b08428df218cb4
- SHA1
  
  5c77c3b9d9bd61912deb4a1c6b46dcbcc1fb23f2
- SHA256
  
  f6c240178a52bea189fe710b47ed70ec55089e2a8f397868017379abb2ec2feb
- SHA512
  
  61141ef7dc7b9b2b458a1330fae4ec683ff06e5a7f7d1179d582f59ce8f5c8453494e4295c5d45e6e5e761ae2db404e27b603b9d7a1c23d47c4eb31501e1d7d0
- SSDEEP
  
  1536:KpBKQVNmFvhjgPEWVFTo6imuqnd8FU900LcolzZASE1m1SXyFhJKOU4N5SG:KbK2XPnboNmuqnoU9JFk1TyFfprSG
Score

8^/10

persistence
- Blocklisted process makes network request
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2