29a4eb606592d90906521b476a877a2c55ecf3c091497718c5ee163d64798a42 | Triage

Sharing

General

Target

3ef253deea81edebd9ccf54cab8dbf51
Size

18KB
Sample

231225-1zt9vsaaa9
MD5

3ef253deea81edebd9ccf54cab8dbf51
SHA1

5d95054cafff8b96dc29d2e67d66c533450fca18
SHA256

29a4eb606592d90906521b476a877a2c55ecf3c091497718c5ee163d64798a42
SHA512

53e669ffd4aabcb034067cd025177cf6bc30bd4bfe5d52c2c187a26e548ac71bf2ca9f17f4b5f43504509fd0f40954ed271bc1f5c292d51dcdefcb355b7a4c69
SSDEEP

384:mSW/W/QSnGOu51jY++wbLvsEBCwN3HppQ5CR6kX7UFHELVfzkbr4:8eu1jTjF3Hpe5sAHgQr4

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  3ef253deea81edebd9ccf54cab8dbf51
- Size
  
  18KB
- MD5
  
  3ef253deea81edebd9ccf54cab8dbf51
- SHA1
  
  5d95054cafff8b96dc29d2e67d66c533450fca18
- SHA256
  
  29a4eb606592d90906521b476a877a2c55ecf3c091497718c5ee163d64798a42
- SHA512
  
  53e669ffd4aabcb034067cd025177cf6bc30bd4bfe5d52c2c187a26e548ac71bf2ca9f17f4b5f43504509fd0f40954ed271bc1f5c292d51dcdefcb355b7a4c69
- SSDEEP
  
  384:mSW/W/QSnGOu51jY++wbLvsEBCwN3HppQ5CR6kX7UFHELVfzkbr4:8eu1jTjF3Hpe5sAHgQr4
Score

8^/10

persistence
- Sets service image path in registry
  persistence
- Executes dropped EXE
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2