92441d62ebcd8c2474473bcf7d7599c6772e4828fa9803e97c808d1bec18e98d | Triage

Sharing

General

Target

6a6c91c252eb0a31faade2ce71ea54b9
Size

898KB
Sample

231222-fjyxwsfdcp
MD5

6a6c91c252eb0a31faade2ce71ea54b9
SHA1

37f3afc8e730506fbea34f09300a893dd5a07a6d
SHA256

92441d62ebcd8c2474473bcf7d7599c6772e4828fa9803e97c808d1bec18e98d
SHA512

347e7e79fdd23d821e4d5234f88a4b6a5e2a83b0d3eaddfc76928c1e44edb6de1523da1f7aad5cb2641f5d7f784b725eab618efe485a3b54c4596de1d2585e2e
SSDEEP

12288:nx53rirHbCWJuS5TIcqk70D9DO0bY907IDU6/eb0esFCEg:nx53UgXcqk70x6YYe75mZdCEg

Score

8^/10

evasion persistence

Malware Config

Targets

- Target
  
  6a6c91c252eb0a31faade2ce71ea54b9
- Size
  
  898KB
- MD5
  
  6a6c91c252eb0a31faade2ce71ea54b9
- SHA1
  
  37f3afc8e730506fbea34f09300a893dd5a07a6d
- SHA256
  
  92441d62ebcd8c2474473bcf7d7599c6772e4828fa9803e97c808d1bec18e98d
- SHA512
  
  347e7e79fdd23d821e4d5234f88a4b6a5e2a83b0d3eaddfc76928c1e44edb6de1523da1f7aad5cb2641f5d7f784b725eab618efe485a3b54c4596de1d2585e2e
- SSDEEP
  
  12288:nx53rirHbCWJuS5TIcqk70D9DO0bY907IDU6/eb0esFCEg:nx53UgXcqk70x6YYe75mZdCEg
Score

8^/10

evasion persistence
- Disables RegEdit via registry modification
  evasion
- Modifies Windows Firewall
  evasion
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Create or Modify System Process

Windows Service

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Create or Modify System Process

Windows Service

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasionpersistence

behavioral2

evasionpersistence