516cfba96a118037b0dc03bb7d9e9422e597fbd8c8596e1cce6dcf51893345b1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

516cfba96a118037b0dc03bb7d9e9422e597fbd8c8596e1cce6dcf51893345b1
Size

1.4MB
Sample

231022-khqbkseg2x
MD5

1a74251c46b63c3fc00cc4d8898b5df1
SHA1

7b5a2ccd0734e623e4eaada48c38ae59fef923df
SHA256

516cfba96a118037b0dc03bb7d9e9422e597fbd8c8596e1cce6dcf51893345b1
SHA512

0a094de3e6a806468c8cb4f3de4cfe7e264b4e1fa0ecf3eed09636a45ddef552b162697d39b9e4c3835f4fb34f1ab0f3d4e550ad22535d0a873524ab361b9e32
SSDEEP

24576:B2hOJ1sKIMpqc8xae4q+vD0rSwGnnDpAnfXdTii4FT5ryV1kSqVc5zzrr+guaq:0hOHsgLe4q+L0CninfXdLEThyV1kSqS+

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  516cfba96a118037b0dc03bb7d9e9422e597fbd8c8596e1cce6dcf51893345b1
- Size
  
  1.4MB
- MD5
  
  1a74251c46b63c3fc00cc4d8898b5df1
- SHA1
  
  7b5a2ccd0734e623e4eaada48c38ae59fef923df
- SHA256
  
  516cfba96a118037b0dc03bb7d9e9422e597fbd8c8596e1cce6dcf51893345b1
- SHA512
  
  0a094de3e6a806468c8cb4f3de4cfe7e264b4e1fa0ecf3eed09636a45ddef552b162697d39b9e4c3835f4fb34f1ab0f3d4e550ad22535d0a873524ab361b9e32
- SSDEEP
  
  24576:B2hOJ1sKIMpqc8xae4q+vD0rSwGnnDpAnfXdTii4FT5ryV1kSqVc5zzrr+guaq:0hOHsgLe4q+L0CninfXdLEThyV1kSqS+
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2