fb95356b16692c90627ce227a477ba8b1b3fd7c4b47b4885afd0a5f7f8d1ec3b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fb95356b16692c90627ce227a477ba8b1b3fd7c4b47b4885afd0a5f7f8d1ec3b
Size

656KB
Sample

231014-cv2ldade67
MD5

7bd7131790c613d668af07d3bf53b763
SHA1

021ba15847e1df215c377a3ab7caed06ca1b332d
SHA256

fb95356b16692c90627ce227a477ba8b1b3fd7c4b47b4885afd0a5f7f8d1ec3b
SHA512

32d4f2aceac5736ff647eb3df52523eec4813f7ba3cb2847600bae15db3d03329e475a368d0c4b34ae31aadfb7e0eb8ec0177f6acb1412d2ef4f9107c5d80d87
SSDEEP

6144:nQ8RIrbu65frSFDdTHbm3wlPMJAOYTB5Y2pCyx396nQzGmtbgADaN0uXTSRJ6wAk:DUPdrS1dT7mAyJKTHY2pxxt6nQ

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  fb95356b16692c90627ce227a477ba8b1b3fd7c4b47b4885afd0a5f7f8d1ec3b
- Size
  
  656KB
- MD5
  
  7bd7131790c613d668af07d3bf53b763
- SHA1
  
  021ba15847e1df215c377a3ab7caed06ca1b332d
- SHA256
  
  fb95356b16692c90627ce227a477ba8b1b3fd7c4b47b4885afd0a5f7f8d1ec3b
- SHA512
  
  32d4f2aceac5736ff647eb3df52523eec4813f7ba3cb2847600bae15db3d03329e475a368d0c4b34ae31aadfb7e0eb8ec0177f6acb1412d2ef4f9107c5d80d87
- SSDEEP
  
  6144:nQ8RIrbu65frSFDdTHbm3wlPMJAOYTB5Y2pCyx396nQzGmtbgADaN0uXTSRJ6wAk:DUPdrS1dT7mAyJKTHY2pxxt6nQ
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2