dcf278531fdcfd4a3cab2e147d26054a377e3c13188afe0e052cdbf041df1cbe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1fc7966be2f26fb9e1b96efc7d0984d7
Size

385KB
Sample

231230-3ar5babfar
MD5

1fc7966be2f26fb9e1b96efc7d0984d7
SHA1

61a67c7cda705ffcbd84b4a70dbfd90a13bc9b1a
SHA256

dcf278531fdcfd4a3cab2e147d26054a377e3c13188afe0e052cdbf041df1cbe
SHA512

e19da5c1e264a09cf4cf7d058683154df249cd31c519f18ab0826883d09f090ea24ac49cfe66e84beaa34c06cfdfac2df760fe40a7ed3e2c2c59bd8803654a44
SSDEEP

6144:7ST2k0YujF59B+SNiT1SRws339pnPJ7ImcZBTbo:SFxujX9B+lAb9Im+BT8

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  1fc7966be2f26fb9e1b96efc7d0984d7
- Size
  
  385KB
- MD5
  
  1fc7966be2f26fb9e1b96efc7d0984d7
- SHA1
  
  61a67c7cda705ffcbd84b4a70dbfd90a13bc9b1a
- SHA256
  
  dcf278531fdcfd4a3cab2e147d26054a377e3c13188afe0e052cdbf041df1cbe
- SHA512
  
  e19da5c1e264a09cf4cf7d058683154df249cd31c519f18ab0826883d09f090ea24ac49cfe66e84beaa34c06cfdfac2df760fe40a7ed3e2c2c59bd8803654a44
- SSDEEP
  
  6144:7ST2k0YujF59B+SNiT1SRws339pnPJ7ImcZBTbo:SFxujX9B+lAb9Im+BT8
Score

8^/10

persistence
- Modifies AppInit DLL entries
  persistence
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2