fa0d4feb6f5161b3230a274303235ce4306b36b00e6dd3419476f9031c35fabb | Triage

Sharing

General

Target

fa0d4feb6f5161b3230a274303235ce4306b36b00e6dd3419476f9031c35fabb
Size

2.7MB
Sample

230823-15kmlsfh92
MD5

17013fd1e2f18766d88edc37b4f1ca0b
SHA1

b81d48831b0e3aaf0daeffc0629447251d5f45ba
SHA256

fa0d4feb6f5161b3230a274303235ce4306b36b00e6dd3419476f9031c35fabb
SHA512

e15e63cbbb70583c1cf20848ac2aa110481c744cf025058d6e6ce73fef985ec238f7328445cc41a28d51e02cdc1c39e543e62881215a971320906985dd496ea4
SSDEEP

49152:3Rv/l9TmwnD6GggADeOba6TR0x/i10gdN79fIrP7Ct0+m+YG:hnl9TmwD6GFADegixKfIq9m+Y

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  fa0d4feb6f5161b3230a274303235ce4306b36b00e6dd3419476f9031c35fabb
- Size
  
  2.7MB
- MD5
  
  17013fd1e2f18766d88edc37b4f1ca0b
- SHA1
  
  b81d48831b0e3aaf0daeffc0629447251d5f45ba
- SHA256
  
  fa0d4feb6f5161b3230a274303235ce4306b36b00e6dd3419476f9031c35fabb
- SHA512
  
  e15e63cbbb70583c1cf20848ac2aa110481c744cf025058d6e6ce73fef985ec238f7328445cc41a28d51e02cdc1c39e543e62881215a971320906985dd496ea4
- SSDEEP
  
  49152:3Rv/l9TmwnD6GggADeOba6TR0x/i10gdN79fIrP7Ct0+m+YG:hnl9TmwD6GFADegixKfIq9m+Y
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2