21b4f5539291f0a82a9815aa816427157ea050c6e343d590e59bc5a1851df186 | Triage

Sharing

General

Target

21b4f5539291f0a82a9815aa816427157ea050c6e343d590e59bc5a1851df186
Size

237KB
Sample

221205-sz38rsfg9z
MD5

3d801aca03997af3be614461a69b21e0
SHA1

aef9baed56172d6afe45045ff8f546d46ae5d0df
SHA256

21b4f5539291f0a82a9815aa816427157ea050c6e343d590e59bc5a1851df186
SHA512

91133765b856c3e7c3aab8d0d52a8581ed5459ea8ae7a17ab71b0dad23aea4ffbe3dab36e271b46cfb4f825bbf457399416f137baf73e27eab84d94c2faf81ad
SSDEEP

1536:ah3I3Y/OmZWgu8ghI8ANLPc6JTLxvolgBwjhIHOiAwKhgOeS/5/IhnGcG7wkIZ:ah3PDghILPcAvoawjXbwPSx/Iuwk8

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  21b4f5539291f0a82a9815aa816427157ea050c6e343d590e59bc5a1851df186
- Size
  
  237KB
- MD5
  
  3d801aca03997af3be614461a69b21e0
- SHA1
  
  aef9baed56172d6afe45045ff8f546d46ae5d0df
- SHA256
  
  21b4f5539291f0a82a9815aa816427157ea050c6e343d590e59bc5a1851df186
- SHA512
  
  91133765b856c3e7c3aab8d0d52a8581ed5459ea8ae7a17ab71b0dad23aea4ffbe3dab36e271b46cfb4f825bbf457399416f137baf73e27eab84d94c2faf81ad
- SSDEEP
  
  1536:ah3I3Y/OmZWgu8ghI8ANLPc6JTLxvolgBwjhIHOiAwKhgOeS/5/IhnGcG7wkIZ:ah3PDghILPcAvoawjXbwPSx/Iuwk8
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2