a060637de33ac2dfc8c71ce92637e3ad1c52165a0a98f922c88030fbda4320a1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a060637de33ac2dfc8c71ce92637e3ad1c52165a0a98f922c88030fbda4320a1
Size

727KB
Sample

221206-tamp6abf79
MD5

f704c05819bb874ae082c77cd67b920c
SHA1

1eec100a58c2243d6ee2e49340ec8a226b763b1c
SHA256

a060637de33ac2dfc8c71ce92637e3ad1c52165a0a98f922c88030fbda4320a1
SHA512

1f0c4d3af26f4eb66809cd4d135fb753d70c20190fd9490254a0470bf86dda92b650368d1cdb9025a5b6ee37e1ea191ee00926b96b3eb080c0c0e9e2d0147fb6
SSDEEP

12288:g8L25c+ugtP0AF9jh0zzF9zl04skRICpwPz/0wi6AoCPY1urkh//spebIl6nMfSF:gGr+hiAF9gR0aPpC/FAoCPY1urkh//sW

Score

8^/10

evasion persistence

Malware Config

Targets

- Target
  
  a060637de33ac2dfc8c71ce92637e3ad1c52165a0a98f922c88030fbda4320a1
- Size
  
  727KB
- MD5
  
  f704c05819bb874ae082c77cd67b920c
- SHA1
  
  1eec100a58c2243d6ee2e49340ec8a226b763b1c
- SHA256
  
  a060637de33ac2dfc8c71ce92637e3ad1c52165a0a98f922c88030fbda4320a1
- SHA512
  
  1f0c4d3af26f4eb66809cd4d135fb753d70c20190fd9490254a0470bf86dda92b650368d1cdb9025a5b6ee37e1ea191ee00926b96b3eb080c0c0e9e2d0147fb6
- SSDEEP
  
  12288:g8L25c+ugtP0AF9jh0zzF9zl04skRICpwPz/0wi6AoCPY1urkh//spebIl6nMfSF:gGr+hiAF9gR0aPpC/FAoCPY1urkh//sW
Score

8^/10

evasion persistence
- Disables RegEdit via registry modification
  evasion
- Disables Task Manager via registry modification
  evasion
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasionpersistence

behavioral2

evasionpersistence