f001b71ff2656216fdb4736d230c560089d10e50c677f59f9d66c18277c27ba1 | Triage

Sharing

General

Target

019d0da37d4464cfd839f0742453a21a
Size

12KB
Sample

231225-djsd1aehhm
MD5

019d0da37d4464cfd839f0742453a21a
SHA1

9f23d1a1f6512fd51798bafb93b50471743cdfda
SHA256

f001b71ff2656216fdb4736d230c560089d10e50c677f59f9d66c18277c27ba1
SHA512

2c432dd6dc95a06d856b9673adc88c35e0e0fe588fbc3885a0f78ff465df412665953762b508738754f2d45d9caeec693f0120362d16cee6f617a23bdd1e1333
SSDEEP

384:mRW/WzV8GOu2Wo+UdeDSSnAz/FXne4hb/:CiTptr

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  019d0da37d4464cfd839f0742453a21a
- Size
  
  12KB
- MD5
  
  019d0da37d4464cfd839f0742453a21a
- SHA1
  
  9f23d1a1f6512fd51798bafb93b50471743cdfda
- SHA256
  
  f001b71ff2656216fdb4736d230c560089d10e50c677f59f9d66c18277c27ba1
- SHA512
  
  2c432dd6dc95a06d856b9673adc88c35e0e0fe588fbc3885a0f78ff465df412665953762b508738754f2d45d9caeec693f0120362d16cee6f617a23bdd1e1333
- SSDEEP
  
  384:mRW/WzV8GOu2Wo+UdeDSSnAz/FXne4hb/:CiTptr
Score

8^/10

persistence
- Sets service image path in registry
  persistence
- Deletes itself
- Executes dropped EXE
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2