d3ae8cef984fa2b8dad2b566da020b7aaf2751255bb6b0833a2b99e7d9f538c2 | Triage

Sharing

General

Target

158b5c92c38d7933d5264b5fd2d2a83d
Size

78KB
Sample

231224-2bnb3secc9
MD5

158b5c92c38d7933d5264b5fd2d2a83d
SHA1

4dcb5944ff4d8d3be822c98a77f92e043941e43d
SHA256

d3ae8cef984fa2b8dad2b566da020b7aaf2751255bb6b0833a2b99e7d9f538c2
SHA512

f9bff7fc967b718022a85b531f9c49334a8adcb6b7adda301ec83942de626e769f2ab93a7bacff75cd30df9d7e174d5129d3b9e69bf2fbbf719aa51558eb26b9
SSDEEP

1536:kLHk5SjT1qrBTTHA8mEYyEo6g2/TbULkYi45x+1IVXusi1s:oHYS+BvHANEpEo6g0/8kYB5xC+uh1

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  158b5c92c38d7933d5264b5fd2d2a83d
- Size
  
  78KB
- MD5
  
  158b5c92c38d7933d5264b5fd2d2a83d
- SHA1
  
  4dcb5944ff4d8d3be822c98a77f92e043941e43d
- SHA256
  
  d3ae8cef984fa2b8dad2b566da020b7aaf2751255bb6b0833a2b99e7d9f538c2
- SHA512
  
  f9bff7fc967b718022a85b531f9c49334a8adcb6b7adda301ec83942de626e769f2ab93a7bacff75cd30df9d7e174d5129d3b9e69bf2fbbf719aa51558eb26b9
- SSDEEP
  
  1536:kLHk5SjT1qrBTTHA8mEYyEo6g2/TbULkYi45x+1IVXusi1s:oHYS+BvHANEpEo6g0/8kYB5xC+uh1
Score

8^/10

persistence
- Blocklisted process makes network request
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2