a6d19112bcc8b9291f480fbbd1cdd57f98f06a3a83b4ba8b39b45b82a0a08cd5 | Triage

Sharing

General

Target

6807d22f32db398b057d9ee7f875cf46
Size

78KB
Sample

231226-mqjj4sgagq
MD5

6807d22f32db398b057d9ee7f875cf46
SHA1

1408341d9fdca2c62a97ea135a2020b96794aa32
SHA256

a6d19112bcc8b9291f480fbbd1cdd57f98f06a3a83b4ba8b39b45b82a0a08cd5
SHA512

5c2f2934b36f9ea4a0e28e36df8071889923e4ffc23eefd0ee756c025ea6d0bba5dccc3c663e1d697c0d796976de92ffba7ce81035b12e4a1bd2c0028e74f7f0
SSDEEP

1536:PmkgRjKOPM82q2qstg4QeV/EVWUXLNjUYphlP:PmV3Pz2fgneV8tXp9jZ

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  6807d22f32db398b057d9ee7f875cf46
- Size
  
  78KB
- MD5
  
  6807d22f32db398b057d9ee7f875cf46
- SHA1
  
  1408341d9fdca2c62a97ea135a2020b96794aa32
- SHA256
  
  a6d19112bcc8b9291f480fbbd1cdd57f98f06a3a83b4ba8b39b45b82a0a08cd5
- SHA512
  
  5c2f2934b36f9ea4a0e28e36df8071889923e4ffc23eefd0ee756c025ea6d0bba5dccc3c663e1d697c0d796976de92ffba7ce81035b12e4a1bd2c0028e74f7f0
- SSDEEP
  
  1536:PmkgRjKOPM82q2qstg4QeV/EVWUXLNjUYphlP:PmV3Pz2fgneV8tXp9jZ
Score

8^/10

persistence
- Blocklisted process makes network request
- Drops file in Drivers directory
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2