993ae5a4c9da10d48b84943c1c0dc6ccd67ce2b39c0d8ad7af52d4a9d50fd718

Resubmissions

29-10-2024 09:29

241029-lgap6stgkp 6

12-10-2023 15:01

231012-sd6f1ahc78 6

Sharing

Copy URL

Twitter E-mail

General

Target

993ae5a4c9da10d48b84943c1c0dc6ccd67ce2b39c0d8ad7af52d4a9d50fd718
Size

390.3MB
Sample

231012-sd6f1ahc78
MD5

dd2ea25752751c8fb44da2b23daf24a4
SHA1

4ed4e7ad683993c18de43c22ca97d83515b4c162
SHA256

993ae5a4c9da10d48b84943c1c0dc6ccd67ce2b39c0d8ad7af52d4a9d50fd718
SHA512

a6a4bff1192629129656505143cd353b0b089e31508831fbe7f1e4487e9906a957ba4152ae7dd767b4cfb39379a65d1fec45a812cd3a947e3e16e926cfe7a7a0
SSDEEP

196608:EH3cbJSEQNyXbUNbBYPDdi41c3G97o0BvHDYvx61e:EH3cNSEQkbw2roUvE56

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  993ae5a4c9da10d48b84943c1c0dc6ccd67ce2b39c0d8ad7af52d4a9d50fd718
- Size
  
  390.3MB
- MD5
  
  dd2ea25752751c8fb44da2b23daf24a4
- SHA1
  
  4ed4e7ad683993c18de43c22ca97d83515b4c162
- SHA256
  
  993ae5a4c9da10d48b84943c1c0dc6ccd67ce2b39c0d8ad7af52d4a9d50fd718
- SHA512
  
  a6a4bff1192629129656505143cd353b0b089e31508831fbe7f1e4487e9906a957ba4152ae7dd767b4cfb39379a65d1fec45a812cd3a947e3e16e926cfe7a7a0
- SSDEEP
  
  196608:EH3cbJSEQNyXbUNbBYPDdi41c3G97o0BvHDYvx61e:EH3cNSEQkbw2roUvE56
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

T1547

Registry Run Keys / Startup Folder

T1547.001

Privilege Escalation

Boot or Logon Autostart Execution

T1547

Registry Run Keys / Startup Folder

T1547.001

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Resubmissions

Sharing

General

Malware Config

Targets

Adds Run key to start application

Looks up external IP address via web service

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2