ca1853b0cddf67d881e1bdb39b48386af1bc5cb8f7fcd3a70b151b35b46092fc | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0887d2051d384859635c448d13b953ac
Size

14KB
Sample

231230-arq95abdf2
MD5

0887d2051d384859635c448d13b953ac
SHA1

f8be03acac38294d7b5af5315419a275d96bc51e
SHA256

ca1853b0cddf67d881e1bdb39b48386af1bc5cb8f7fcd3a70b151b35b46092fc
SHA512

ce4ece77bd33b8d9105644f6bb53fc960a4d0b280cfc498314140d4986d24566d11b1318aee2f3e3530219b4602d7b2ffbf7b6b088337f20b8c192c2663a8cf8
SSDEEP

384:N/OpcJix5cUxb7znzOOf/EAasNIR9rPGrCa/zOQ3:EpcJC5cUt77aSIKAR+d1

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  0887d2051d384859635c448d13b953ac
- Size
  
  14KB
- MD5
  
  0887d2051d384859635c448d13b953ac
- SHA1
  
  f8be03acac38294d7b5af5315419a275d96bc51e
- SHA256
  
  ca1853b0cddf67d881e1bdb39b48386af1bc5cb8f7fcd3a70b151b35b46092fc
- SHA512
  
  ce4ece77bd33b8d9105644f6bb53fc960a4d0b280cfc498314140d4986d24566d11b1318aee2f3e3530219b4602d7b2ffbf7b6b088337f20b8c192c2663a8cf8
- SSDEEP
  
  384:N/OpcJix5cUxb7znzOOf/EAasNIR9rPGrCa/zOQ3:EpcJC5cUt77aSIKAR+d1
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Deletes itself
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2