ff0d82f607ebbb1d6acc4cf18754e945c438fb301350c0a7df68bf83b94f5b81 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

085cc960cad71eadc5d9ccd0d3f5affc
Size

685KB
Sample

231230-ang72saea7
MD5

085cc960cad71eadc5d9ccd0d3f5affc
SHA1

5b12f8dd4a0d27fd9d8c0d22c4a1f639ed5abb23
SHA256

ff0d82f607ebbb1d6acc4cf18754e945c438fb301350c0a7df68bf83b94f5b81
SHA512

e8f5b2cab393b094819320aee2eb9828f179956b15368b4e94f46f6e3d4b31e85d1b6f048a6329d7711d692bb4edffd9fa909450e66025a8e6453a7ef24192e0
SSDEEP

12288:ew1QA4OFhJz4zyHRMzq/uy+K0YSJ/ZF3Z4mxxO/H7d5G1swCw4ac:dQA4pyHSzPbY8ZQmXO/bd5G1swCwa

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  085cc960cad71eadc5d9ccd0d3f5affc
- Size
  
  685KB
- MD5
  
  085cc960cad71eadc5d9ccd0d3f5affc
- SHA1
  
  5b12f8dd4a0d27fd9d8c0d22c4a1f639ed5abb23
- SHA256
  
  ff0d82f607ebbb1d6acc4cf18754e945c438fb301350c0a7df68bf83b94f5b81
- SHA512
  
  e8f5b2cab393b094819320aee2eb9828f179956b15368b4e94f46f6e3d4b31e85d1b6f048a6329d7711d692bb4edffd9fa909450e66025a8e6453a7ef24192e0
- SSDEEP
  
  12288:ew1QA4OFhJz4zyHRMzq/uy+K0YSJ/ZF3Z4mxxO/H7d5G1swCw4ac:dQA4pyHSzPbY8ZQmXO/bd5G1swCwa
Score

7^/10

persistence
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2