c95149c877641f95e258f121c98c9736903ebef3ffa070f30b331c9c0912699c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c95149c877641f95e258f121c98c9736903ebef3ffa070f30b331c9c0912699c
Size

78KB
Sample

221205-gqz9zaga41
MD5

802291c52430d182e45b71918d330320
SHA1

fd9f792c24cc645d588f670295bf47d2536dcd64
SHA256

c95149c877641f95e258f121c98c9736903ebef3ffa070f30b331c9c0912699c
SHA512

ca60e8eb69ab8e629e0ed2a045b6097cfaa2a08b0d9d7ab6eb8f119b62882ca6d4ea7cdd88c825ef9df734436bd70ac7b1c40064affed37e0cb9c8f688c514fd
SSDEEP

1536:b8Y2vk+Ua4tbQF2PUu9bZjOU4PTex7MVS0WLkn5kV+4X6+u2ODMI:QYx1a4tbQF6UGljOPTex78SYnaVo+xI

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  c95149c877641f95e258f121c98c9736903ebef3ffa070f30b331c9c0912699c
- Size
  
  78KB
- MD5
  
  802291c52430d182e45b71918d330320
- SHA1
  
  fd9f792c24cc645d588f670295bf47d2536dcd64
- SHA256
  
  c95149c877641f95e258f121c98c9736903ebef3ffa070f30b331c9c0912699c
- SHA512
  
  ca60e8eb69ab8e629e0ed2a045b6097cfaa2a08b0d9d7ab6eb8f119b62882ca6d4ea7cdd88c825ef9df734436bd70ac7b1c40064affed37e0cb9c8f688c514fd
- SSDEEP
  
  1536:b8Y2vk+Ua4tbQF2PUu9bZjOU4PTex7MVS0WLkn5kV+4X6+u2ODMI:QYx1a4tbQF6UGljOPTex78SYnaVo+xI
Score

8^/10

persistence
- Drops file in Drivers directory
- Sets DLL path for service in the registry
  persistence
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2