976b70795d34332b6aafcf4b259049dca721b512b289f4eb5be50cfe1f45cc09 | Triage

Sharing

General

Target

01ade46a97396086a7ce742a14f1ecfd
Size

16KB
Sample

231229-x5whbsagep
MD5

01ade46a97396086a7ce742a14f1ecfd
SHA1

71e65bca782c3f512e3a765f9ef4bf786e6ccbc3
SHA256

976b70795d34332b6aafcf4b259049dca721b512b289f4eb5be50cfe1f45cc09
SHA512

a8209a371f85af5479ebc5d72c5ef6368e126587c29bd30e73ff630dd1a425646ecb2511d16bc1a07f80bbf851052779aed3ca73d1be6aee02688ad6899bd453
SSDEEP

384:mhW/WzLiGOuwLR8JIEgh5xMvkDRyiyxI97zqp52BsahC:FhLRZxMvARyVI97+p52uYC

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  01ade46a97396086a7ce742a14f1ecfd
- Size
  
  16KB
- MD5
  
  01ade46a97396086a7ce742a14f1ecfd
- SHA1
  
  71e65bca782c3f512e3a765f9ef4bf786e6ccbc3
- SHA256
  
  976b70795d34332b6aafcf4b259049dca721b512b289f4eb5be50cfe1f45cc09
- SHA512
  
  a8209a371f85af5479ebc5d72c5ef6368e126587c29bd30e73ff630dd1a425646ecb2511d16bc1a07f80bbf851052779aed3ca73d1be6aee02688ad6899bd453
- SSDEEP
  
  384:mhW/WzLiGOuwLR8JIEgh5xMvkDRyiyxI97zqp52BsahC:FhLRZxMvARyVI97+p52uYC
Score

8^/10

persistence
- Sets service image path in registry
  persistence
- Deletes itself
- Executes dropped EXE
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Remote System Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2