f1b3e499d6e83d1d2038eb835205e2fd2bc79b1a4b5dd8823c88ec9356a95aa4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f1b3e499d6e83d1d2038eb835205e2fd2bc79b1a4b5dd8823c88ec9356a95aa4
Size

38.1MB
Sample

221206-qre5vsca92
MD5

d94d71e62542ed54a477eb1bb39ead06
SHA1

ae2c54dfee8a433f239f9dfcd84e3cd9290edfc4
SHA256

f1b3e499d6e83d1d2038eb835205e2fd2bc79b1a4b5dd8823c88ec9356a95aa4
SHA512

3a9ef6d9933ea8c17b83edfa82c5f9858d7ceed34681bd8f587b8ed3396b9c4f3370d5ce53b66e36e029b567857210fdde346a6ddc055cca7ee684f9763da1ce
SSDEEP

786432:byV4FVHIo9fiTpQTmMxY23oHzOkSBf3OY:WV4wo9fMQfxCikW/OY

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  f1b3e499d6e83d1d2038eb835205e2fd2bc79b1a4b5dd8823c88ec9356a95aa4
- Size
  
  38.1MB
- MD5
  
  d94d71e62542ed54a477eb1bb39ead06
- SHA1
  
  ae2c54dfee8a433f239f9dfcd84e3cd9290edfc4
- SHA256
  
  f1b3e499d6e83d1d2038eb835205e2fd2bc79b1a4b5dd8823c88ec9356a95aa4
- SHA512
  
  3a9ef6d9933ea8c17b83edfa82c5f9858d7ceed34681bd8f587b8ed3396b9c4f3370d5ce53b66e36e029b567857210fdde346a6ddc055cca7ee684f9763da1ce
- SSDEEP
  
  786432:byV4FVHIo9fiTpQTmMxY23oHzOkSBf3OY:WV4wo9fMQfxCikW/OY
Score

8^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2