d67e8389b4c3260f56fcc62ce51c4886288debcfeafc748e4a7e961b60129d8d | Triage

Sharing

General

Target

d67e8389b4c3260f56fcc62ce51c4886288debcfeafc748e4a7e961b60129d8d
Size

408KB
Sample

221204-xen1kafa53
MD5

351fc5e540852592bc03fcf27cb44207
SHA1

ef0b719466f60ce352d6aadfa7c31baf53841c4b
SHA256

d67e8389b4c3260f56fcc62ce51c4886288debcfeafc748e4a7e961b60129d8d
SHA512

f368e1e0f6372390f862bfc432397ad877a94669ccbb2f4bffbd8de1758e4d1ea3a5d395646f1c5d4b0bf79193d29adb08622581d9e3af317ec0655e0c9b5568
SSDEEP

12288:9eObOke6TorAx31Io8EL2XM3jo4ln2kX/5:9esEyokx315LUM3jo4l2kv5

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  d67e8389b4c3260f56fcc62ce51c4886288debcfeafc748e4a7e961b60129d8d
- Size
  
  408KB
- MD5
  
  351fc5e540852592bc03fcf27cb44207
- SHA1
  
  ef0b719466f60ce352d6aadfa7c31baf53841c4b
- SHA256
  
  d67e8389b4c3260f56fcc62ce51c4886288debcfeafc748e4a7e961b60129d8d
- SHA512
  
  f368e1e0f6372390f862bfc432397ad877a94669ccbb2f4bffbd8de1758e4d1ea3a5d395646f1c5d4b0bf79193d29adb08622581d9e3af317ec0655e0c9b5568
- SSDEEP
  
  12288:9eObOke6TorAx31Io8EL2XM3jo4ln2kX/5:9esEyokx315LUM3jo4l2kv5
Score

8^/10

persistence
- Executes dropped EXE
- Deletes itself
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Remote System Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2