86e0f4ab422632d059185f4612c346fdd20c9ad32d715a8eb3d9865651ff9be0 | Triage

Sharing

General

Target

48bc0e0ee693885f65455e2d207eb6c3
Size

1.6MB
Sample

231226-bpgtcaaacm
MD5

48bc0e0ee693885f65455e2d207eb6c3
SHA1

e2375d05f0d46598015f55b006b3ad62724b1cff
SHA256

86e0f4ab422632d059185f4612c346fdd20c9ad32d715a8eb3d9865651ff9be0
SHA512

037ee3e4fa759dba68545922e39898dfeacd32376121af972cf760d2c281aee2dc4771733be00f558e6f5853a20bb9b662d554732d28b5ca42923926516603e1
SSDEEP

49152:b/vl0jY5EdcSucc5aEvEljtPrtsjfenhhs7hY5O/QTGoy:b10IEdpucc5aEvElZDtsjfis1Y5O/QTy

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  48bc0e0ee693885f65455e2d207eb6c3
- Size
  
  1.6MB
- MD5
  
  48bc0e0ee693885f65455e2d207eb6c3
- SHA1
  
  e2375d05f0d46598015f55b006b3ad62724b1cff
- SHA256
  
  86e0f4ab422632d059185f4612c346fdd20c9ad32d715a8eb3d9865651ff9be0
- SHA512
  
  037ee3e4fa759dba68545922e39898dfeacd32376121af972cf760d2c281aee2dc4771733be00f558e6f5853a20bb9b662d554732d28b5ca42923926516603e1
- SSDEEP
  
  49152:b/vl0jY5EdcSucc5aEvEljtPrtsjfenhhs7hY5O/QTGoy:b10IEdpucc5aEvElZDtsjfis1Y5O/QTy
Score

8^/10

persistence
- Blocklisted process makes network request
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2