a14ab005ed46776c00535712c7ccc91991ab0537aec55df665ac67065db5c74c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0489337d099cb964d642ba93815af67a
Size

65KB
Sample

231229-1ee97sedcq
MD5

0489337d099cb964d642ba93815af67a
SHA1

dea0bd0c0745d1fd7176dd4bb28cd5c13c939916
SHA256

a14ab005ed46776c00535712c7ccc91991ab0537aec55df665ac67065db5c74c
SHA512

e9cc2063f0f4f1bad5b1ba157b5e90ce159fc7bc488afd7a1fd61d4e6d191c994f4bb5a5a1ddb232150d5851e086183c1d998f1f179534d6e3c7b131d914618b
SSDEEP

1536:ip5vzAnFzVBO3XvJjxozesUxJk5p5xMSTlTM:ip5vgJknhKyVJk5p5xM2M

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  0489337d099cb964d642ba93815af67a
- Size
  
  65KB
- MD5
  
  0489337d099cb964d642ba93815af67a
- SHA1
  
  dea0bd0c0745d1fd7176dd4bb28cd5c13c939916
- SHA256
  
  a14ab005ed46776c00535712c7ccc91991ab0537aec55df665ac67065db5c74c
- SHA512
  
  e9cc2063f0f4f1bad5b1ba157b5e90ce159fc7bc488afd7a1fd61d4e6d191c994f4bb5a5a1ddb232150d5851e086183c1d998f1f179534d6e3c7b131d914618b
- SSDEEP
  
  1536:ip5vzAnFzVBO3XvJjxozesUxJk5p5xMSTlTM:ip5vgJknhKyVJk5p5xM2M
Score

8^/10

persistence
- Drops file in Drivers directory
- Sets DLL path for service in the registry
  persistence
- Deletes itself
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2