9ab83378024f758127cefa0ef94556c7c9563b739c9f2b9d1a431307b9a901b0 | Triage

Sharing

General

Target

9ab83378024f758127cefa0ef94556c7c9563b739c9f2b9d1a431307b9a901b0
Size

50KB
Sample

221207-dnhelaad43
MD5

4d130062de6337fd83e0f9044ace1a29
SHA1

d9d165c2ccc8d51d149fea5e0f2f51554163f7c6
SHA256

9ab83378024f758127cefa0ef94556c7c9563b739c9f2b9d1a431307b9a901b0
SHA512

f260ceaa2d8b6b5593a6c360e55d8faf822f17afe594502f493d50e60b4d5ede29a7dceda2003bc02288447f84e4f128abb5a7e48a094f0e6aa88b5fde0ffe0a
SSDEEP

768:hQStoZ9u1+wluQIQCWdkMUohC/IfU75dDqIy+2LVzfg9dnc8My:mi+wZISZUoh8IsNsIsz4L/L

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  9ab83378024f758127cefa0ef94556c7c9563b739c9f2b9d1a431307b9a901b0
- Size
  
  50KB
- MD5
  
  4d130062de6337fd83e0f9044ace1a29
- SHA1
  
  d9d165c2ccc8d51d149fea5e0f2f51554163f7c6
- SHA256
  
  9ab83378024f758127cefa0ef94556c7c9563b739c9f2b9d1a431307b9a901b0
- SHA512
  
  f260ceaa2d8b6b5593a6c360e55d8faf822f17afe594502f493d50e60b4d5ede29a7dceda2003bc02288447f84e4f128abb5a7e48a094f0e6aa88b5fde0ffe0a
- SSDEEP
  
  768:hQStoZ9u1+wluQIQCWdkMUohC/IfU75dDqIy+2LVzfg9dnc8My:mi+wZISZUoh8IsNsIsz4L/L
Score

8^/10

persistence
- Adds policy Run key to start application
  persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2