90fdb19cf7c7ae8b4b289144a447ff3c905fd7d258751337611ad60a7638d96b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

90fdb19cf7c7ae8b4b289144a447ff3c905fd7d258751337611ad60a7638d96b
Size

127KB
Sample

221205-1gwpzach3t
MD5

e46319889f6bda81685a7287175cb0eb
SHA1

600a2df0e21dbc84bd090c8fb5af68bf566e062a
SHA256

90fdb19cf7c7ae8b4b289144a447ff3c905fd7d258751337611ad60a7638d96b
SHA512

24ecbd2f3c0e9fc45cc3c128a6bf65d31ea1c04b8b00a5eb1bfc129add5085c5e437f6da51e4db3ecc1564dd64fe8ece88435bda781a1450dc1191077f99285f
SSDEEP

3072:FkXTF3F6r17MqRYrIhs6QbcpBA7vDQqfMDe2pZqQnF:F03Fe6q2chNPBA750HD

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  90fdb19cf7c7ae8b4b289144a447ff3c905fd7d258751337611ad60a7638d96b
- Size
  
  127KB
- MD5
  
  e46319889f6bda81685a7287175cb0eb
- SHA1
  
  600a2df0e21dbc84bd090c8fb5af68bf566e062a
- SHA256
  
  90fdb19cf7c7ae8b4b289144a447ff3c905fd7d258751337611ad60a7638d96b
- SHA512
  
  24ecbd2f3c0e9fc45cc3c128a6bf65d31ea1c04b8b00a5eb1bfc129add5085c5e437f6da51e4db3ecc1564dd64fe8ece88435bda781a1450dc1191077f99285f
- SSDEEP
  
  3072:FkXTF3F6r17MqRYrIhs6QbcpBA7vDQqfMDe2pZqQnF:F03Fe6q2chNPBA750HD
Score

8^/10

persistence
- Modifies AppInit DLL entries
  persistence
- Deletes itself
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2