37a00ecbd7e4af9a25f93e074e9b9a7f70cdfac3e63fe56894129f65b0952833 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0f83592a2a08a9403dfe5b508501e6e6
Size

14KB
Sample

231230-fqw2wababn
MD5

0f83592a2a08a9403dfe5b508501e6e6
SHA1

92c107234fad2f5e44539c4e51eccf1594ef38b6
SHA256

37a00ecbd7e4af9a25f93e074e9b9a7f70cdfac3e63fe56894129f65b0952833
SHA512

44bb2a9485d11f6755b445f7c3c51de14e3629d7e6b20f052bb9ac7e36644b937b7bddbfa3258a6218a7bf88226e4c747d0073ac66f0908341f3d140d46fa4bc
SSDEEP

384:po1KfVLuDvNR3nNHbaRn7/NTXJh3PAIBjg7:plluJ/un7VTPP7jg7

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  0f83592a2a08a9403dfe5b508501e6e6
- Size
  
  14KB
- MD5
  
  0f83592a2a08a9403dfe5b508501e6e6
- SHA1
  
  92c107234fad2f5e44539c4e51eccf1594ef38b6
- SHA256
  
  37a00ecbd7e4af9a25f93e074e9b9a7f70cdfac3e63fe56894129f65b0952833
- SHA512
  
  44bb2a9485d11f6755b445f7c3c51de14e3629d7e6b20f052bb9ac7e36644b937b7bddbfa3258a6218a7bf88226e4c747d0073ac66f0908341f3d140d46fa4bc
- SSDEEP
  
  384:po1KfVLuDvNR3nNHbaRn7/NTXJh3PAIBjg7:plluJ/un7VTPP7jg7
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Deletes itself
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2