69a837d2cb27f6b13a1acbcfd5eecf7e20b9d7173b9488153f1189b6e7e8e942 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

763fa1a7356168b9afa1cf4a265a3a7a
Size

75KB
Sample

231226-r1smzsgbaq
MD5

763fa1a7356168b9afa1cf4a265a3a7a
SHA1

ebe967cad1345fd1589fff834981b6e65114f874
SHA256

69a837d2cb27f6b13a1acbcfd5eecf7e20b9d7173b9488153f1189b6e7e8e942
SHA512

3d0d560c049b4ebe37af4249993e259da91fa3900a529ec22d3c53fe31f16a46820b69532743324a34b19d517bf104a2b30de01b402a1d65191df5df31e272bb
SSDEEP

1536:U/uujvOYsobxHJMfASs6BEHcYmp+r6k192cTZMud:UNdsobxHyu6BORucTD

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  763fa1a7356168b9afa1cf4a265a3a7a
- Size
  
  75KB
- MD5
  
  763fa1a7356168b9afa1cf4a265a3a7a
- SHA1
  
  ebe967cad1345fd1589fff834981b6e65114f874
- SHA256
  
  69a837d2cb27f6b13a1acbcfd5eecf7e20b9d7173b9488153f1189b6e7e8e942
- SHA512
  
  3d0d560c049b4ebe37af4249993e259da91fa3900a529ec22d3c53fe31f16a46820b69532743324a34b19d517bf104a2b30de01b402a1d65191df5df31e272bb
- SSDEEP
  
  1536:U/uujvOYsobxHJMfASs6BEHcYmp+r6k192cTZMud:UNdsobxHyu6BORucTD
Score

8^/10

persistence
- Modifies AppInit DLL entries
  persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2