28fdd0612e2c3716cd09fb7c166b7b839c5aa0c4596189ee5fffdf92b57a6375 | Triage

Sharing

General

Target

0204bb7d418b715226b4875a9436402e
Size

626KB
Sample

231229-ydabfsdagr
MD5

0204bb7d418b715226b4875a9436402e
SHA1

73ecbf75a0218d7753d970dce357f8ca2813f158
SHA256

28fdd0612e2c3716cd09fb7c166b7b839c5aa0c4596189ee5fffdf92b57a6375
SHA512

6cfd96cb5d18b2daa925e130c675e680b665f9e84a6ac8101b509752358727a99fe45c97721b0cb0682f4038bd4f57e73bd6309fceef747d2329d9dd1a0c42e7
SSDEEP

3072:7+ZvkWp8qX96QfCDpMqrT4GmdVM3bXKCKk3T1a/PTYhA7Jf22QA6Ivv1tH/nSrNF:aZmqt6Qyiy3b6CR10TY8JOArF9S9

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  0204bb7d418b715226b4875a9436402e
- Size
  
  626KB
- MD5
  
  0204bb7d418b715226b4875a9436402e
- SHA1
  
  73ecbf75a0218d7753d970dce357f8ca2813f158
- SHA256
  
  28fdd0612e2c3716cd09fb7c166b7b839c5aa0c4596189ee5fffdf92b57a6375
- SHA512
  
  6cfd96cb5d18b2daa925e130c675e680b665f9e84a6ac8101b509752358727a99fe45c97721b0cb0682f4038bd4f57e73bd6309fceef747d2329d9dd1a0c42e7
- SSDEEP
  
  3072:7+ZvkWp8qX96QfCDpMqrT4GmdVM3bXKCKk3T1a/PTYhA7Jf22QA6Ivv1tH/nSrNF:aZmqt6Qyiy3b6CR10TY8JOArF9S9
Score

7^/10

persistence
- Deletes itself
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2