282f9f9ac5c7f4aabc1f378948638265dbedca47d523f7e00b44b9e5ce5b02ce | Triage

Sharing

General

Target

1926dd50569779b7c4c019159e573b0d
Size

20KB
Sample

231225-m4es3sbch8
MD5

1926dd50569779b7c4c019159e573b0d
SHA1

a4b14a2af04a5b0b72c1a4b0c0d6fc2dcce6b962
SHA256

282f9f9ac5c7f4aabc1f378948638265dbedca47d523f7e00b44b9e5ce5b02ce
SHA512

6a809b9379eff8957cf23c78f183a5add42f2e80901f5ab630e6f8534c34718147f787016bf712e5b9f5f98f3300dd7bd037b9ec98eb5469a9a97b564ac54231
SSDEEP

384:Wn16n27YvmWRAbjaPS5VgVFQKsQfRmdnTEX1gLAFlQYVaJ:WngnvmWRAiPb9sgYTggk7tVaJ

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  1926dd50569779b7c4c019159e573b0d
- Size
  
  20KB
- MD5
  
  1926dd50569779b7c4c019159e573b0d
- SHA1
  
  a4b14a2af04a5b0b72c1a4b0c0d6fc2dcce6b962
- SHA256
  
  282f9f9ac5c7f4aabc1f378948638265dbedca47d523f7e00b44b9e5ce5b02ce
- SHA512
  
  6a809b9379eff8957cf23c78f183a5add42f2e80901f5ab630e6f8534c34718147f787016bf712e5b9f5f98f3300dd7bd037b9ec98eb5469a9a97b564ac54231
- SSDEEP
  
  384:Wn16n27YvmWRAbjaPS5VgVFQKsQfRmdnTEX1gLAFlQYVaJ:WngnvmWRAiPb9sgYTggk7tVaJ
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2