aedae916e0aa0da6896dc320c2421bf36eb93c4c2962ebd36a70d08db18fe156 | Triage

Sharing

General

Target

1df5b0197c814cf46dcb0415d34e15c2
Size

18KB
Sample

231230-1zyx2sbeg4
MD5

1df5b0197c814cf46dcb0415d34e15c2
SHA1

77901145f27b918b737ec1205ec7ee7c83a261a2
SHA256

aedae916e0aa0da6896dc320c2421bf36eb93c4c2962ebd36a70d08db18fe156
SHA512

f2f91fa944bda210f5afa259582952b2875eeed79a0b485b2dd7c8b364fc06e39376192bb7da5707555237ff2475de585342524cc2db31c6f7596ec5c94d9740
SSDEEP

384:JgwnIQHmLW86qh1sR7G+4hIerXJIX63CCsrp3BEWGXgKmv:h0AG+4uerJIXh/3BGwKa

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  1df5b0197c814cf46dcb0415d34e15c2
- Size
  
  18KB
- MD5
  
  1df5b0197c814cf46dcb0415d34e15c2
- SHA1
  
  77901145f27b918b737ec1205ec7ee7c83a261a2
- SHA256
  
  aedae916e0aa0da6896dc320c2421bf36eb93c4c2962ebd36a70d08db18fe156
- SHA512
  
  f2f91fa944bda210f5afa259582952b2875eeed79a0b485b2dd7c8b364fc06e39376192bb7da5707555237ff2475de585342524cc2db31c6f7596ec5c94d9740
- SSDEEP
  
  384:JgwnIQHmLW86qh1sR7G+4hIerXJIX63CCsrp3BEWGXgKmv:h0AG+4uerJIXh/3BGwKa
Score

8^/10

persistence
- Drops file in Drivers directory
- Modifies AppInit DLL entries
  persistence
- Deletes itself
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2