76665f37f480c1124bed319c55457d7909e9179fa791bbf2971c4b3f072c0273 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3cc0d0740491861616c3a6a0a728e2e6
Size

1021KB
Sample

231225-zx8tsscchj
MD5

3cc0d0740491861616c3a6a0a728e2e6
SHA1

402011eadfbdc2440cfee0783d76a2499f004c83
SHA256

76665f37f480c1124bed319c55457d7909e9179fa791bbf2971c4b3f072c0273
SHA512

5f6c4b4348e83e3cf55f6ed502802b6e5464fe289abb35ff27ddc2869f19b34c11619145188ae859d323e4d1143f36a54eefc79f2e7cae45179fa02888aaff85
SSDEEP

24576:gvmqGi12npB+mjFXOXvAkEp3W8AD/Dhd+y4lqJ8QdCYDoDNQ:gvmbi1mpB+KtdsvD/DX+y4onCYDoDK

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  3cc0d0740491861616c3a6a0a728e2e6
- Size
  
  1021KB
- MD5
  
  3cc0d0740491861616c3a6a0a728e2e6
- SHA1
  
  402011eadfbdc2440cfee0783d76a2499f004c83
- SHA256
  
  76665f37f480c1124bed319c55457d7909e9179fa791bbf2971c4b3f072c0273
- SHA512
  
  5f6c4b4348e83e3cf55f6ed502802b6e5464fe289abb35ff27ddc2869f19b34c11619145188ae859d323e4d1143f36a54eefc79f2e7cae45179fa02888aaff85
- SSDEEP
  
  24576:gvmqGi12npB+mjFXOXvAkEp3W8AD/Dhd+y4lqJ8QdCYDoDNQ:gvmbi1mpB+KtdsvD/DX+y4onCYDoDK
Score

8^/10

persistence
- Sets DLL path for service in the registry
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2