b99a59e59dab61fccf50b54034248b7272d80277c2f05d48c3226c85297be4e6 | Triage

Sharing

General

Target

b99a59e59dab61fccf50b54034248b7272d80277c2f05d48c3226c85297be4e6
Size

413KB
Sample

231106-t4njjsea78
MD5

d91621d4112a79df2ab5541ef771c363
SHA1

6f76209d52d812d71ae75252a9390547ae211443
SHA256

b99a59e59dab61fccf50b54034248b7272d80277c2f05d48c3226c85297be4e6
SHA512

c3d44ff7f54ce1d166c28dda122d1c9c5e0acc63e4ce506d7b4da148e6ec937694d5ff7e34e1789376eec671ec9484a10f91c26e305d807d36b45975dc5a8093
SSDEEP

3072:Gh+Q287Uss3Wf5eOZyutAwfGB0nEgAabkER9Hrl1WXg8naDx:Gh+Q287UvWBeDspnTbJR9LlL8aN

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  b99a59e59dab61fccf50b54034248b7272d80277c2f05d48c3226c85297be4e6
- Size
  
  413KB
- MD5
  
  d91621d4112a79df2ab5541ef771c363
- SHA1
  
  6f76209d52d812d71ae75252a9390547ae211443
- SHA256
  
  b99a59e59dab61fccf50b54034248b7272d80277c2f05d48c3226c85297be4e6
- SHA512
  
  c3d44ff7f54ce1d166c28dda122d1c9c5e0acc63e4ce506d7b4da148e6ec937694d5ff7e34e1789376eec671ec9484a10f91c26e305d807d36b45975dc5a8093
- SSDEEP
  
  3072:Gh+Q287Uss3Wf5eOZyutAwfGB0nEgAabkER9Hrl1WXg8naDx:Gh+Q287UvWBeDspnTbJR9LlL8aN
Score

8^/10

persistence
- Blocklisted process makes network request
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2