97bf17299274b46f886b50d64119dcfc4bc5043af34e7d6d6519451cb876f35a | Triage

Sharing

General

Target

28ed06664add3a5e97b67b3e8ec79f8c
Size

100KB
Sample

231225-srvxeshcb4
MD5

28ed06664add3a5e97b67b3e8ec79f8c
SHA1

082bec76fe6c47a36e6b098a4d6da5de04bb82eb
SHA256

97bf17299274b46f886b50d64119dcfc4bc5043af34e7d6d6519451cb876f35a
SHA512

1700fed7384d774cd3d1144434608213bb898ddc1c88e08af205bf0c82ad782b7756d1bb2442f4414b1bfdab2f0b021aa64be1582d161eb8671fab7dd619795e
SSDEEP

1536:XhuSeAudDWmuYjrqctgYiINQGCIsnohr3vIHFT3wBZEmrH68+obcJlId:cr6Qr9TNNHsohr3vIHSSeHB+oYJlId

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  28ed06664add3a5e97b67b3e8ec79f8c
- Size
  
  100KB
- MD5
  
  28ed06664add3a5e97b67b3e8ec79f8c
- SHA1
  
  082bec76fe6c47a36e6b098a4d6da5de04bb82eb
- SHA256
  
  97bf17299274b46f886b50d64119dcfc4bc5043af34e7d6d6519451cb876f35a
- SHA512
  
  1700fed7384d774cd3d1144434608213bb898ddc1c88e08af205bf0c82ad782b7756d1bb2442f4414b1bfdab2f0b021aa64be1582d161eb8671fab7dd619795e
- SSDEEP
  
  1536:XhuSeAudDWmuYjrqctgYiINQGCIsnohr3vIHFT3wBZEmrH68+obcJlId:cr6Qr9TNNHsohr3vIHSSeHB+oYJlId
Score

8^/10

persistence
- Modifies AppInit DLL entries
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2