4e8b7e1dc484613cf2e819759b9858bba449c681e50ca03e750ac2ce9ae9f209 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

64089fbc91799069b612bdd0e4226b2d817dc6f7
Size

15KB
Sample

230202-qs92maba9x
MD5

c607c5402643cbecb95e625c06c41c0a
SHA1

64089fbc91799069b612bdd0e4226b2d817dc6f7
SHA256

4e8b7e1dc484613cf2e819759b9858bba449c681e50ca03e750ac2ce9ae9f209
SHA512

bc8f5945a9d4e60cd008598efbbed56621c43ecc99f54ce12eef55d12e9fc7a1f27c4c58f7ed3fcb230518c8ffad796f806a6bbaa6c04b55067adad070f97a5a
SSDEEP

192:dQpv76pVD9fYLoCenvOqpDMHSluU9jy60jTmttOHBP/Qtx5Ag96ROpMNS/e2Bwat:XCoHvrDSssrT2tVY1O+EiaSqg+t4S

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  64089fbc91799069b612bdd0e4226b2d817dc6f7
- Size
  
  15KB
- MD5
  
  c607c5402643cbecb95e625c06c41c0a
- SHA1
  
  64089fbc91799069b612bdd0e4226b2d817dc6f7
- SHA256
  
  4e8b7e1dc484613cf2e819759b9858bba449c681e50ca03e750ac2ce9ae9f209
- SHA512
  
  bc8f5945a9d4e60cd008598efbbed56621c43ecc99f54ce12eef55d12e9fc7a1f27c4c58f7ed3fcb230518c8ffad796f806a6bbaa6c04b55067adad070f97a5a
- SSDEEP
  
  192:dQpv76pVD9fYLoCenvOqpDMHSluU9jy60jTmttOHBP/Qtx5Ag96ROpMNS/e2Bwat:XCoHvrDSssrT2tVY1O+EiaSqg+t4S
Score

8^/10

persistence
- Drops file in Drivers directory
- Modifies AppInit DLL entries
  persistence
- Deletes itself
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2