8d2a1468aa98a85123be3d570aa071d51026e719716d3a88c4c97a0f95d4a0c2 | Triage

Sharing

General

Target

109cf7f8941beab19bb8df5da41f46aa
Size

72KB
Sample

231224-y5xwtsbde4
MD5

109cf7f8941beab19bb8df5da41f46aa
SHA1

376708c2c50d4758e50c23fecfccd5a19654d968
SHA256

8d2a1468aa98a85123be3d570aa071d51026e719716d3a88c4c97a0f95d4a0c2
SHA512

68c8476f654f8b7cfbbcbba460cb21f35cfc040b3a9e98473a1d98549af286150dc47b4e91df16436e6bc19d67e12453e3b08e22cea285e48be5b9b405a2cbaf
SSDEEP

1536:dNgVbuDBif3xLYKgGRS7nea66xkVTLQ1Up0UYpTnNu3Gz1zbH5b:rg9SSgGRweahkVA1Xpky

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  109cf7f8941beab19bb8df5da41f46aa
- Size
  
  72KB
- MD5
  
  109cf7f8941beab19bb8df5da41f46aa
- SHA1
  
  376708c2c50d4758e50c23fecfccd5a19654d968
- SHA256
  
  8d2a1468aa98a85123be3d570aa071d51026e719716d3a88c4c97a0f95d4a0c2
- SHA512
  
  68c8476f654f8b7cfbbcbba460cb21f35cfc040b3a9e98473a1d98549af286150dc47b4e91df16436e6bc19d67e12453e3b08e22cea285e48be5b9b405a2cbaf
- SSDEEP
  
  1536:dNgVbuDBif3xLYKgGRS7nea66xkVTLQ1Up0UYpTnNu3Gz1zbH5b:rg9SSgGRweahkVA1Xpky
Score

8^/10

persistence
- Blocklisted process makes network request
- Deletes itself
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2