e72e91ed48ffd1e533e2bc7c1b2114d7b61e7fc6e0fdb037207324263d128e85 | Triage

Sharing

General

Target

237e5bed4efbb1756da7382da0d313f7
Size

67KB
Sample

231225-q8nhkaeabp
MD5

237e5bed4efbb1756da7382da0d313f7
SHA1

07e3d470fccdd49e1f53c4a8f6ca8faa0eead2ff
SHA256

e72e91ed48ffd1e533e2bc7c1b2114d7b61e7fc6e0fdb037207324263d128e85
SHA512

d03fa5bfef25d6e9d245e5b0b4bfe1b883de6ffc7544a3c08e0323a68efe6f73c4a43844750c0bc67d7992dc4a1b58b926436fb33a3501dd03678edf0068bb6a
SSDEEP

1536:e647AIp0kjpFuQQbL4EVU0mVRNEwDBwx0/7Mi/HOmoUwEz:rcAIPjpnYLNugwDGx0/B/dR

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  237e5bed4efbb1756da7382da0d313f7
- Size
  
  67KB
- MD5
  
  237e5bed4efbb1756da7382da0d313f7
- SHA1
  
  07e3d470fccdd49e1f53c4a8f6ca8faa0eead2ff
- SHA256
  
  e72e91ed48ffd1e533e2bc7c1b2114d7b61e7fc6e0fdb037207324263d128e85
- SHA512
  
  d03fa5bfef25d6e9d245e5b0b4bfe1b883de6ffc7544a3c08e0323a68efe6f73c4a43844750c0bc67d7992dc4a1b58b926436fb33a3501dd03678edf0068bb6a
- SSDEEP
  
  1536:e647AIp0kjpFuQQbL4EVU0mVRNEwDBwx0/7Mi/HOmoUwEz:rcAIPjpnYLNugwDGx0/B/dR
Score

8^/10

persistence
- Sets DLL path for service in the registry
  persistence
- Deletes itself
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2