e1952f7e0438383a6e03d29a94935967d9b1b154b5d9130e172143765e5db65c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

045f7c146c0b486c41124092ffcf0fbd
Size

236KB
Sample

231229-z826dsdcak
MD5

045f7c146c0b486c41124092ffcf0fbd
SHA1

004a85a267644151807a2e60d5d55c38eb5af14c
SHA256

e1952f7e0438383a6e03d29a94935967d9b1b154b5d9130e172143765e5db65c
SHA512

8d1a4b12f675bf0535169346d2dfc8f648a12f538805e0c521e70dd02b1e9caf669720075995c449c5e3c12cee133c501e9d6a4bb0d0c4479a8d4108dd173683
SSDEEP

3072:3F24fliN+7XlmZKxbLYH1rhAwHL5K2W5QVgxwkF7:3F24flic7X8ZibLYHFhAkKZYgn7

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  045f7c146c0b486c41124092ffcf0fbd
- Size
  
  236KB
- MD5
  
  045f7c146c0b486c41124092ffcf0fbd
- SHA1
  
  004a85a267644151807a2e60d5d55c38eb5af14c
- SHA256
  
  e1952f7e0438383a6e03d29a94935967d9b1b154b5d9130e172143765e5db65c
- SHA512
  
  8d1a4b12f675bf0535169346d2dfc8f648a12f538805e0c521e70dd02b1e9caf669720075995c449c5e3c12cee133c501e9d6a4bb0d0c4479a8d4108dd173683
- SSDEEP
  
  3072:3F24fliN+7XlmZKxbLYH1rhAwHL5K2W5QVgxwkF7:3F24flic7X8ZibLYHFhAkKZYgn7
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2