c16327422935e0eb62d5954d369643fd48e861f2513a35c1fd771d4b990058f5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

tmp
Size

4.9MB
Sample

230516-p1sa4shh41
MD5

9ce9a4ff097b9e2cfcee1578d5550e49
SHA1

8bfef2733d2cfac6a644159ceab78711505e90e2
SHA256

c16327422935e0eb62d5954d369643fd48e861f2513a35c1fd771d4b990058f5
SHA512

19f40e24ea821df5b4e29b2db41caf87b4c4a87906287c53ae6350e5a0dd55d2094e2a0927262803cb6ba1accf14e336cd5413305f28fe6bb6199de25a78bd5c
SSDEEP

49152:KOssbc5xzt6DohcH8tx0CaOXX5B0jGREKMfKAfqNMP4ps789ly7B1Vyz9/Yj6jvp:jc0SjXtv64CCy7zO/XV

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  tmp
- Size
  
  4.9MB
- MD5
  
  9ce9a4ff097b9e2cfcee1578d5550e49
- SHA1
  
  8bfef2733d2cfac6a644159ceab78711505e90e2
- SHA256
  
  c16327422935e0eb62d5954d369643fd48e861f2513a35c1fd771d4b990058f5
- SHA512
  
  19f40e24ea821df5b4e29b2db41caf87b4c4a87906287c53ae6350e5a0dd55d2094e2a0927262803cb6ba1accf14e336cd5413305f28fe6bb6199de25a78bd5c
- SSDEEP
  
  49152:KOssbc5xzt6DohcH8tx0CaOXX5B0jGREKMfKAfqNMP4ps789ly7B1Vyz9/Yj6jvp:jc0SjXtv64CCy7zO/XV
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2