893b5cfbf6b679e5da40d01b3ddea87803d9ce3938ea79d353fe0d2fb7d6667f | Triage

Sharing

General

Target

4c4160a12eecadee8ee5ba2d6e4b17a5d5dd58cd
Size

17KB
Sample

230202-qwfxyshe89
MD5

f56b884bf1216fcb519c29f964504e5e
SHA1

4c4160a12eecadee8ee5ba2d6e4b17a5d5dd58cd
SHA256

893b5cfbf6b679e5da40d01b3ddea87803d9ce3938ea79d353fe0d2fb7d6667f
SHA512

25b564f85aa32128c80e5eb38342a1242183024119492e596125bca8b715b6f140f3c90c5615a74a2fe9dc66a79c593bead87f0ac4506193ce70423bcf939d5d
SSDEEP

384:Z1e4n7QAjTaCKE/ZyBdqnNr12MBvJNFO9IQxPHdXh:/P7QOdPyHIrvgaSPHdR

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  4c4160a12eecadee8ee5ba2d6e4b17a5d5dd58cd
- Size
  
  17KB
- MD5
  
  f56b884bf1216fcb519c29f964504e5e
- SHA1
  
  4c4160a12eecadee8ee5ba2d6e4b17a5d5dd58cd
- SHA256
  
  893b5cfbf6b679e5da40d01b3ddea87803d9ce3938ea79d353fe0d2fb7d6667f
- SHA512
  
  25b564f85aa32128c80e5eb38342a1242183024119492e596125bca8b715b6f140f3c90c5615a74a2fe9dc66a79c593bead87f0ac4506193ce70423bcf939d5d
- SSDEEP
  
  384:Z1e4n7QAjTaCKE/ZyBdqnNr12MBvJNFO9IQxPHdXh:/P7QOdPyHIrvgaSPHdR
Score

7^/10

persistence
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2