63c1f882487dbd6a9563d7911d2c7f1556f586db3de2f61bbb7d97a0f21b9887 | Triage

Sharing

General

Target

63c1f882487dbd6a9563d7911d2c7f1556f586db3de2f61bbb7d97a0f21b9887
Size

562KB
Sample

231012-1wnb5sed82
MD5

55d7f865e3ecdaf4667334ec0bb20fca
SHA1

1943fd3d6b144998563fe6673236349cd15951f0
SHA256

63c1f882487dbd6a9563d7911d2c7f1556f586db3de2f61bbb7d97a0f21b9887
SHA512

428dc9c677e3a39014f919090caa91efa4c714529f0755978a925f8be272ba69f5de55a2799913b4a70b25328c14d80851ca96c007e231c7e0d17f543c047b04
SSDEEP

12288:ymYrKaeViZ4vK+s0HykG32nVEO3LlvGUqHOHTznugUZlW:fiqK+ZykG32nuMGUAOHnVA

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  63c1f882487dbd6a9563d7911d2c7f1556f586db3de2f61bbb7d97a0f21b9887
- Size
  
  562KB
- MD5
  
  55d7f865e3ecdaf4667334ec0bb20fca
- SHA1
  
  1943fd3d6b144998563fe6673236349cd15951f0
- SHA256
  
  63c1f882487dbd6a9563d7911d2c7f1556f586db3de2f61bbb7d97a0f21b9887
- SHA512
  
  428dc9c677e3a39014f919090caa91efa4c714529f0755978a925f8be272ba69f5de55a2799913b4a70b25328c14d80851ca96c007e231c7e0d17f543c047b04
- SSDEEP
  
  12288:ymYrKaeViZ4vK+s0HykG32nVEO3LlvGUqHOHTznugUZlW:fiqK+ZykG32nuMGUAOHnVA
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2