d9fecfc5c408f9e2301bcb79170f75d6f5bf33c3d764f7f73ac59c8e9707012f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d9fecfc5c408f9e2301bcb79170f75d6f5bf33c3d764f7f73ac59c8e9707012f
Size

3.2MB
Sample

221229-xlm2vadg66
MD5

35acff80b7b0ce62e7340fa15a909c49
SHA1

13efde4589651c009fa29cf77c2d17b5a03262e6
SHA256

d9fecfc5c408f9e2301bcb79170f75d6f5bf33c3d764f7f73ac59c8e9707012f
SHA512

e867ed74b6667c3bc506715353d72bae7d4d73dd2d4e98180db706855c42474f2326c534f7d2e04a74e5435365939722e87d3324bf41af7047ae792fe92a534a
SSDEEP

49152:13C3EKGJxWmTtcckaI5uJz9lNi8txHM+5YjCpVJJJJDX3BG3UF2AkO:1E+VqElo0xHM+5YjIXpkO

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  d9fecfc5c408f9e2301bcb79170f75d6f5bf33c3d764f7f73ac59c8e9707012f
- Size
  
  3.2MB
- MD5
  
  35acff80b7b0ce62e7340fa15a909c49
- SHA1
  
  13efde4589651c009fa29cf77c2d17b5a03262e6
- SHA256
  
  d9fecfc5c408f9e2301bcb79170f75d6f5bf33c3d764f7f73ac59c8e9707012f
- SHA512
  
  e867ed74b6667c3bc506715353d72bae7d4d73dd2d4e98180db706855c42474f2326c534f7d2e04a74e5435365939722e87d3324bf41af7047ae792fe92a534a
- SSDEEP
  
  49152:13C3EKGJxWmTtcckaI5uJz9lNi8txHM+5YjCpVJJJJDX3BG3UF2AkO:1E+VqElo0xHM+5YjIXpkO
Score

7^/10

persistence
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2