8e930603c80b86df1862a04a9369927073f307e486d8ee3e866626e611189c48 | Triage

Sharing

General

Target

8e930603c80b86df1862a04a9369927073f307e486d8ee3e866626e611189c48
Size

167KB
Sample

221204-pswcsshg57
MD5

dfc2b699a1a034febcfcbb7a0896f378
SHA1

e7ac60c3078dbf09927898be9c9b9168fdc6a9cf
SHA256

8e930603c80b86df1862a04a9369927073f307e486d8ee3e866626e611189c48
SHA512

90204c42ea3fe8f1a6cf894c92bf3697e30aa790a9241c6bf64b75c23f61cda2611e1cb036d40df7d30ecb0fe10200f85289e467c5e8fc8b53c7a322fba9bf2d
SSDEEP

3072:98YFaqe9ZjBozEV+Rvq/nFBi14WOZJRHQCiTD8ukbVS1:9BEL9ZFooVcvS7iSpZ3H6D8ukb

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  8e930603c80b86df1862a04a9369927073f307e486d8ee3e866626e611189c48
- Size
  
  167KB
- MD5
  
  dfc2b699a1a034febcfcbb7a0896f378
- SHA1
  
  e7ac60c3078dbf09927898be9c9b9168fdc6a9cf
- SHA256
  
  8e930603c80b86df1862a04a9369927073f307e486d8ee3e866626e611189c48
- SHA512
  
  90204c42ea3fe8f1a6cf894c92bf3697e30aa790a9241c6bf64b75c23f61cda2611e1cb036d40df7d30ecb0fe10200f85289e467c5e8fc8b53c7a322fba9bf2d
- SSDEEP
  
  3072:98YFaqe9ZjBozEV+Rvq/nFBi14WOZJRHQCiTD8ukbVS1:9BEL9ZFooVcvS7iSpZ3H6D8ukb
Score

8^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2