6a335dd8243f7e12d748c2cc803449cb7d7ac2f172ff8d19ffc14a5679f6bc74 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6a335dd8243f7e12d748c2cc803449cb7d7ac2f172ff8d19ffc14a5679f6bc74
Size

1.8MB
Sample

230824-lsavbabf33
MD5

4696389ae919e97cb8af4a87e2c257e7
SHA1

4d44f760d9f728a76b4bf43ee77a58a93b6844e7
SHA256

6a335dd8243f7e12d748c2cc803449cb7d7ac2f172ff8d19ffc14a5679f6bc74
SHA512

741431b84952bd260d3a2c03b3aa634840f66f4fdd96b97072d2f7df240de65b81962a3c7f4e9a6996053e70f387924e959248e1e4c61a385232e81d6efda636
SSDEEP

24576:czG+qCbnSmjihIf5z2bAO5h4NHdkiLT2Nyljp6OuFdFG3:RhIS2z234RdnLT2FFdFG3

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  6a335dd8243f7e12d748c2cc803449cb7d7ac2f172ff8d19ffc14a5679f6bc74
- Size
  
  1.8MB
- MD5
  
  4696389ae919e97cb8af4a87e2c257e7
- SHA1
  
  4d44f760d9f728a76b4bf43ee77a58a93b6844e7
- SHA256
  
  6a335dd8243f7e12d748c2cc803449cb7d7ac2f172ff8d19ffc14a5679f6bc74
- SHA512
  
  741431b84952bd260d3a2c03b3aa634840f66f4fdd96b97072d2f7df240de65b81962a3c7f4e9a6996053e70f387924e959248e1e4c61a385232e81d6efda636
- SSDEEP
  
  24576:czG+qCbnSmjihIf5z2bAO5h4NHdkiLT2Nyljp6OuFdFG3:RhIS2z234RdnLT2FFdFG3
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2