517a86f9b714c2f6d58fde1eccd144a290b10e97f32786d00ed7d34f4048f340 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7ba2a5b7882a2cde1e7351954100f228
Size

104KB
Sample

231226-tmwhtsagh3
MD5

7ba2a5b7882a2cde1e7351954100f228
SHA1

45860fce70d3f0dafb496c26ad95f184e8059982
SHA256

517a86f9b714c2f6d58fde1eccd144a290b10e97f32786d00ed7d34f4048f340
SHA512

da7d3be73e42f18c949745f9c3c678e44befaed82e5779fedd66722f979358235126a1ee0ec5be72112bf9ca80ccd09158de2e731ac9bab7d7677e51485d0f8d
SSDEEP

3072:o8GnBoznhboLoxklL3p82h6Tb9Gc9zHJZ/Qk:o82ceL3vLcFJZ/v

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  7ba2a5b7882a2cde1e7351954100f228
- Size
  
  104KB
- MD5
  
  7ba2a5b7882a2cde1e7351954100f228
- SHA1
  
  45860fce70d3f0dafb496c26ad95f184e8059982
- SHA256
  
  517a86f9b714c2f6d58fde1eccd144a290b10e97f32786d00ed7d34f4048f340
- SHA512
  
  da7d3be73e42f18c949745f9c3c678e44befaed82e5779fedd66722f979358235126a1ee0ec5be72112bf9ca80ccd09158de2e731ac9bab7d7677e51485d0f8d
- SSDEEP
  
  3072:o8GnBoznhboLoxklL3p82h6Tb9Gc9zHJZ/Qk:o82ceL3vLcFJZ/v
Score

8^/10

persistence
- Modifies AppInit DLL entries
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2