71eb350e28b592efe20008e01d50cb405eb0907ad64ebfb95e2da51803d03e39 | Triage

Sharing

General

Target

c6f02be2bef6ff87593b858dd4d04ce5df1de474
Size

18KB
Sample

230202-qr2c4aah5y
MD5

1d9d52063928945642b3f02e117f7dad
SHA1

c6f02be2bef6ff87593b858dd4d04ce5df1de474
SHA256

71eb350e28b592efe20008e01d50cb405eb0907ad64ebfb95e2da51803d03e39
SHA512

63c059fe09577ebb8c300732e3e3b48c3e0b1572141174d1e58806c7e37a4a3ba74a97439bc06d8d31e5de6ed8b5624b3dd5ec8a0d91201b33df3fe33fdfb59c
SSDEEP

384:5qtxtWAf1migKLqCMPUtmKqjgd2E1sDh6Xtb4WcwWpl6eV2wX+RtCDHNJ1:5q3tTf17g9CiU3qjEXkWcbXV2w2tCDh

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  c6f02be2bef6ff87593b858dd4d04ce5df1de474
- Size
  
  18KB
- MD5
  
  1d9d52063928945642b3f02e117f7dad
- SHA1
  
  c6f02be2bef6ff87593b858dd4d04ce5df1de474
- SHA256
  
  71eb350e28b592efe20008e01d50cb405eb0907ad64ebfb95e2da51803d03e39
- SHA512
  
  63c059fe09577ebb8c300732e3e3b48c3e0b1572141174d1e58806c7e37a4a3ba74a97439bc06d8d31e5de6ed8b5624b3dd5ec8a0d91201b33df3fe33fdfb59c
- SSDEEP
  
  384:5qtxtWAf1migKLqCMPUtmKqjgd2E1sDh6Xtb4WcwWpl6eV2wX+RtCDHNJ1:5q3tTf17g9CiU3qjEXkWcbXV2w2tCDh
Score

7^/10

persistence
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2