1e4f490f59a6429c4b1eb6fadbd98f9bcb08ef3675726ded9f17df648040e6df | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1f1453d5faca0c616f1d7662207c7ccb
Size

220KB
Sample

231225-be925sgec6
MD5

1f1453d5faca0c616f1d7662207c7ccb
SHA1

2e02bc7ebdc6e5a1a831e4983d3b527b4ac23d53
SHA256

1e4f490f59a6429c4b1eb6fadbd98f9bcb08ef3675726ded9f17df648040e6df
SHA512

1b20189fdc2dca0693a7323f24a0c3d513023b26222eb061add47c4db580b1d4b22e03c9ffb5e0282b303485d0ba9cc459da8dd68c70a56561a53f60feed6312
SSDEEP

6144:1pUy5vupAWT+2H3p9L+v6dD3om2H3p9L+:16ynWZo6xw

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  1f1453d5faca0c616f1d7662207c7ccb
- Size
  
  220KB
- MD5
  
  1f1453d5faca0c616f1d7662207c7ccb
- SHA1
  
  2e02bc7ebdc6e5a1a831e4983d3b527b4ac23d53
- SHA256
  
  1e4f490f59a6429c4b1eb6fadbd98f9bcb08ef3675726ded9f17df648040e6df
- SHA512
  
  1b20189fdc2dca0693a7323f24a0c3d513023b26222eb061add47c4db580b1d4b22e03c9ffb5e0282b303485d0ba9cc459da8dd68c70a56561a53f60feed6312
- SSDEEP
  
  6144:1pUy5vupAWT+2H3p9L+v6dD3om2H3p9L+:16ynWZo6xw
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2