f9bd1253246788e34e49031cc526a5d79ea4a9052b48ad22a2b1638a7d00fb82 | Triage

Sharing

General

Target

f9bd1253246788e34e49031cc526a5d79ea4a9052b48ad22a2b1638a7d00fb82
Size

1.8MB
Sample

230130-18aa2sda72
MD5

2415802a0d02b9e6c3977b8d6a1b59fe
SHA1

9d46dbce7c9799e0620084f03dbcf44d3feae989
SHA256

f9bd1253246788e34e49031cc526a5d79ea4a9052b48ad22a2b1638a7d00fb82
SHA512

32d03992f2097e564e692516e473fb22fbe598f12b74d937d13ff0bff5b15fe973248ae53e6cf4d26d324ad66d7033056160e32689195f85ee4e36dfb770fd7e
SSDEEP

49152:8aiH1hPGKtpEjJQ29iLccnR3m136d3bD:8ayPGKtpE+zmAd3

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  f9bd1253246788e34e49031cc526a5d79ea4a9052b48ad22a2b1638a7d00fb82
- Size
  
  1.8MB
- MD5
  
  2415802a0d02b9e6c3977b8d6a1b59fe
- SHA1
  
  9d46dbce7c9799e0620084f03dbcf44d3feae989
- SHA256
  
  f9bd1253246788e34e49031cc526a5d79ea4a9052b48ad22a2b1638a7d00fb82
- SHA512
  
  32d03992f2097e564e692516e473fb22fbe598f12b74d937d13ff0bff5b15fe973248ae53e6cf4d26d324ad66d7033056160e32689195f85ee4e36dfb770fd7e
- SSDEEP
  
  49152:8aiH1hPGKtpEjJQ29iLccnR3m136d3bD:8ayPGKtpE+zmAd3
Score

8^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2