bd2c37515ec5849460602d9f0bc9362c6ca0942ee0e30463ba3e036afbd8cbb1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0586d140ead29c536412a236856c1398
Size

175KB
Sample

231224-twnvcaafdl
MD5

0586d140ead29c536412a236856c1398
SHA1

593859e9b6aad4616d0992db7cce5dfa9fe5a9e8
SHA256

bd2c37515ec5849460602d9f0bc9362c6ca0942ee0e30463ba3e036afbd8cbb1
SHA512

489d4de3e74557aef909546ce952681c80f38e01d11ad0ee03eb234e43f71c5c06bc776da09299fc82932afef4d4970c3cb35a4836b41f32c1acb93a1f136d48
SSDEEP

3072:EcVUaHYq//wkbTxE5xsdJUfn/K6Y3eIgvTRlMIKnWWhOzSeyZmxphDfH9LXMedHK:EcxYq//nXxS+J0Q3e1Cci6hDP9Xz9J

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  0586d140ead29c536412a236856c1398
- Size
  
  175KB
- MD5
  
  0586d140ead29c536412a236856c1398
- SHA1
  
  593859e9b6aad4616d0992db7cce5dfa9fe5a9e8
- SHA256
  
  bd2c37515ec5849460602d9f0bc9362c6ca0942ee0e30463ba3e036afbd8cbb1
- SHA512
  
  489d4de3e74557aef909546ce952681c80f38e01d11ad0ee03eb234e43f71c5c06bc776da09299fc82932afef4d4970c3cb35a4836b41f32c1acb93a1f136d48
- SSDEEP
  
  3072:EcVUaHYq//wkbTxE5xsdJUfn/K6Y3eIgvTRlMIKnWWhOzSeyZmxphDfH9LXMedHK:EcxYq//nXxS+J0Q3e1Cci6hDP9Xz9J
Score

7^/10

persistence
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2