fca37947dead6e48532b221ceee3ce793648f2f8d628e53c0e083ce7a5728a94 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0007769abe33d86241803b8d406bf7ec
Size

60KB
Sample

231229-wpyr3segdm
MD5

0007769abe33d86241803b8d406bf7ec
SHA1

91043345c325c399512526d2747930ae26060868
SHA256

fca37947dead6e48532b221ceee3ce793648f2f8d628e53c0e083ce7a5728a94
SHA512

beca1fb0c2fe230ae70a95a2b37523a79ecc6c43b17507d0bdb174581e966970a6ea7e947fa7061a46a80e440494703fb51bfdfa0e6eaa0940ec3bc6d6f90788
SSDEEP

768:c6Q4sFnBNSROBq1LE1HcCWMDc8OHC4OBifHhTZNB8+EqwCwXw2:HmFnnmOBqC18Lqc8mZJTPB8vqwCsw

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  0007769abe33d86241803b8d406bf7ec
- Size
  
  60KB
- MD5
  
  0007769abe33d86241803b8d406bf7ec
- SHA1
  
  91043345c325c399512526d2747930ae26060868
- SHA256
  
  fca37947dead6e48532b221ceee3ce793648f2f8d628e53c0e083ce7a5728a94
- SHA512
  
  beca1fb0c2fe230ae70a95a2b37523a79ecc6c43b17507d0bdb174581e966970a6ea7e947fa7061a46a80e440494703fb51bfdfa0e6eaa0940ec3bc6d6f90788
- SSDEEP
  
  768:c6Q4sFnBNSROBq1LE1HcCWMDc8OHC4OBifHhTZNB8+EqwCwXw2:HmFnnmOBqC18Lqc8mZJTPB8vqwCsw
Score

8^/10

persistence
- Adds policy Run key to start application
  persistence
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2