e61852c65aa5f19df823758868d4ad6fde6671a63ad2cd65e6eea57e4e335c6e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

22138d36836ad19d7a13605ad393a1e4
Size

220KB
Sample

231225-qtzbhscgf3
MD5

22138d36836ad19d7a13605ad393a1e4
SHA1

b6fd7e76a7ba995e13be093765543cd99b419055
SHA256

e61852c65aa5f19df823758868d4ad6fde6671a63ad2cd65e6eea57e4e335c6e
SHA512

414c2d12194e60a84fdfa06f0faf09973638f53792abcb90bbf49822d7681015b5dd221ff3496f757c0c6d208c4eb752eefa9400d9c6e09327c0d67b5c11bbc6
SSDEEP

6144:ZKJVTF0pJyE2H3p9L+v6dD3om2H3p9L+:oJ3o6xw

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  22138d36836ad19d7a13605ad393a1e4
- Size
  
  220KB
- MD5
  
  22138d36836ad19d7a13605ad393a1e4
- SHA1
  
  b6fd7e76a7ba995e13be093765543cd99b419055
- SHA256
  
  e61852c65aa5f19df823758868d4ad6fde6671a63ad2cd65e6eea57e4e335c6e
- SHA512
  
  414c2d12194e60a84fdfa06f0faf09973638f53792abcb90bbf49822d7681015b5dd221ff3496f757c0c6d208c4eb752eefa9400d9c6e09327c0d67b5c11bbc6
- SSDEEP
  
  6144:ZKJVTF0pJyE2H3p9L+v6dD3om2H3p9L+:oJ3o6xw
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2