439eae14fb8ec99dabf855275fe0d45d537f74bbaaa444b8d7b5968d7553c97d | Triage

Sharing

General

Target

439eae14fb8ec99dabf855275fe0d45d537f74bbaaa444b8d7b5968d7553c97d
Size

2.2MB
Sample

230904-s29tbshd96
MD5

6f96a26ea10ed66d5f26e5246168fccd
SHA1

7d9a6918c8a0b3b85d5a912107e4fd7ed621ff57
SHA256

439eae14fb8ec99dabf855275fe0d45d537f74bbaaa444b8d7b5968d7553c97d
SHA512

0f060f06274b66323dbd9ae2a33141e25b87a8c2a2da6d70668a2a65ec5bbe5d0cbfb7bdbaaa52bcd389e3eb22405073c3715c32c679c5a0254e3fa53fcf3dd4
SSDEEP

24576:npXOQlXMUgd/xRrHNuR51P1K4a/3tQCpv:RXMBRrtI5

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  439eae14fb8ec99dabf855275fe0d45d537f74bbaaa444b8d7b5968d7553c97d
- Size
  
  2.2MB
- MD5
  
  6f96a26ea10ed66d5f26e5246168fccd
- SHA1
  
  7d9a6918c8a0b3b85d5a912107e4fd7ed621ff57
- SHA256
  
  439eae14fb8ec99dabf855275fe0d45d537f74bbaaa444b8d7b5968d7553c97d
- SHA512
  
  0f060f06274b66323dbd9ae2a33141e25b87a8c2a2da6d70668a2a65ec5bbe5d0cbfb7bdbaaa52bcd389e3eb22405073c3715c32c679c5a0254e3fa53fcf3dd4
- SSDEEP
  
  24576:npXOQlXMUgd/xRrHNuR51P1K4a/3tQCpv:RXMBRrtI5
Score

8^/10

persistence
- Adds policy Run key to start application
  persistence
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2