4da9276009914972ec9f986d4b0446077cf71ef0167cf5be42b2b537f57991f7 | Triage

Sharing

General

Target

7045984618d44b79ff9605a1c74a5fb4
Size

214KB
Sample

231226-p63zsseddj
MD5

7045984618d44b79ff9605a1c74a5fb4
SHA1

7f7d3a9378a32b032bb89b117ab7fc2aa485b69c
SHA256

4da9276009914972ec9f986d4b0446077cf71ef0167cf5be42b2b537f57991f7
SHA512

a7d24c2aca77ef7528b2b8760d4a4f6832831031b9454a0f3f19b0e276346778a1318d4cb20c4bbdc888a2ee49a8773d4d37f1273faac234d06ce3dfc8ddb455
SSDEEP

3072:DSuZCA75Y/5EOLqQHNLSl/FSArPi2pt+I5jMYrO0VNQhuyUeSBRM6/ATI8JUg69D:WuZhO/5EOGtl/FOUjhCV34/2O9eRFK/5

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  7045984618d44b79ff9605a1c74a5fb4
- Size
  
  214KB
- MD5
  
  7045984618d44b79ff9605a1c74a5fb4
- SHA1
  
  7f7d3a9378a32b032bb89b117ab7fc2aa485b69c
- SHA256
  
  4da9276009914972ec9f986d4b0446077cf71ef0167cf5be42b2b537f57991f7
- SHA512
  
  a7d24c2aca77ef7528b2b8760d4a4f6832831031b9454a0f3f19b0e276346778a1318d4cb20c4bbdc888a2ee49a8773d4d37f1273faac234d06ce3dfc8ddb455
- SSDEEP
  
  3072:DSuZCA75Y/5EOLqQHNLSl/FSArPi2pt+I5jMYrO0VNQhuyUeSBRM6/ATI8JUg69D:WuZhO/5EOGtl/FOUjhCV34/2O9eRFK/5
Score

8^/10

persistence
- Sets DLL path for service in the registry
  persistence
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2