b94b7add6fc449995c2712a112cd4245bfdbba1afa746f7aa86c55d83fca9cf2 | Triage

Sharing

General

Target

b94b7add6fc449995c2712a112cd4245bfdbba1afa746f7aa86c55d83fca9cf2
Size

384KB
Sample

221207-d6agpsed5t
MD5

89066670d6a2b5c0f36f699302def748
SHA1

ecef40319289d27e516cc4fbccb95ebcd4a62ce3
SHA256

b94b7add6fc449995c2712a112cd4245bfdbba1afa746f7aa86c55d83fca9cf2
SHA512

be36922915e39d72f855f4d91f33cd3000b33d87a487acc5c5fa4b4c7a0ca94b0f3c7cf1013d0c89a404731fad5f17889aa878b53599b0b1bd09ffe51245e0a9
SSDEEP

6144:HKkLG7iiqjnMUjOODWxxKavR1nvgVV8YBSMAKhouuX4eAqyGYP:HKjinM0OO4TvR1nL+vT+Hq

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  b94b7add6fc449995c2712a112cd4245bfdbba1afa746f7aa86c55d83fca9cf2
- Size
  
  384KB
- MD5
  
  89066670d6a2b5c0f36f699302def748
- SHA1
  
  ecef40319289d27e516cc4fbccb95ebcd4a62ce3
- SHA256
  
  b94b7add6fc449995c2712a112cd4245bfdbba1afa746f7aa86c55d83fca9cf2
- SHA512
  
  be36922915e39d72f855f4d91f33cd3000b33d87a487acc5c5fa4b4c7a0ca94b0f3c7cf1013d0c89a404731fad5f17889aa878b53599b0b1bd09ffe51245e0a9
- SSDEEP
  
  6144:HKkLG7iiqjnMUjOODWxxKavR1nvgVV8YBSMAKhouuX4eAqyGYP:HKjinM0OO4TvR1nL+vT+Hq
Score

8^/10

persistence
- Executes dropped EXE
- Deletes itself
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Remote System Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2