8a914e85b5f3f8d6459f5f9914a4fa1f2c5da387d14f7ebdd656f316ee01e55e | Triage

Sharing

General

Target

071d438f12a47892cdda729c8d61bbd1
Size

44KB
Sample

231229-3lf67aaha8
MD5

071d438f12a47892cdda729c8d61bbd1
SHA1

1ed83c90479bd442b54cecc105e6d9beaf043df4
SHA256

8a914e85b5f3f8d6459f5f9914a4fa1f2c5da387d14f7ebdd656f316ee01e55e
SHA512

09653a4e7c0ea403f06909293d7930f82c2ce404c4495267ce9263912acc7049a790ffda1003cb449ea1585aa2fa8bc335f180d3bbaa0006b011ad7a7383dcc3
SSDEEP

384:Im8i1payBBvrtAaqFVsAD2qmvIWWCP6f1Aypct5X5In:ImIyrrtXqQtqmvIWWCP6f13at5XO

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  071d438f12a47892cdda729c8d61bbd1
- Size
  
  44KB
- MD5
  
  071d438f12a47892cdda729c8d61bbd1
- SHA1
  
  1ed83c90479bd442b54cecc105e6d9beaf043df4
- SHA256
  
  8a914e85b5f3f8d6459f5f9914a4fa1f2c5da387d14f7ebdd656f316ee01e55e
- SHA512
  
  09653a4e7c0ea403f06909293d7930f82c2ce404c4495267ce9263912acc7049a790ffda1003cb449ea1585aa2fa8bc335f180d3bbaa0006b011ad7a7383dcc3
- SSDEEP
  
  384:Im8i1payBBvrtAaqFVsAD2qmvIWWCP6f1Aypct5X5In:ImIyrrtXqQtqmvIWWCP6f13at5XO
Score

8^/10

persistence
- Modifies AppInit DLL entries
  persistence
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2