c185a974a48c2eee993b8dc23a8bfa1e918acbb16abb95e5564edb8ac61da178 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1534b2bc590dd59faa5b8d60c613dad2
Size

266KB
Sample

231225-ltq8pabea2
MD5

1534b2bc590dd59faa5b8d60c613dad2
SHA1

be864dce55c45bb328d2b56b0c06806133f1e8e9
SHA256

c185a974a48c2eee993b8dc23a8bfa1e918acbb16abb95e5564edb8ac61da178
SHA512

032462cdac45e4929c1a5d70b1ab1b8cbcacb245941726b1ecf8def28d46ccc2fab6bea3e84bf534b0c33daca4ef48225e9b0f2cda73cf0e4c28445ed2a96147
SSDEEP

3072:pCUI/UJiWkiohuQR2TMaxIG79yd9ZOc0WG3/Tr:pCwJcv24ekgvvr

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  1534b2bc590dd59faa5b8d60c613dad2
- Size
  
  266KB
- MD5
  
  1534b2bc590dd59faa5b8d60c613dad2
- SHA1
  
  be864dce55c45bb328d2b56b0c06806133f1e8e9
- SHA256
  
  c185a974a48c2eee993b8dc23a8bfa1e918acbb16abb95e5564edb8ac61da178
- SHA512
  
  032462cdac45e4929c1a5d70b1ab1b8cbcacb245941726b1ecf8def28d46ccc2fab6bea3e84bf534b0c33daca4ef48225e9b0f2cda73cf0e4c28445ed2a96147
- SSDEEP
  
  3072:pCUI/UJiWkiohuQR2TMaxIG79yd9ZOc0WG3/Tr:pCwJcv24ekgvvr
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2