813acb9728de261599557c3f4312a0abe3211896d9e99b2deebf063ebe13e854 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1026068197fccba0f8e38e8699482ba1
Size

182KB
Sample

231230-ga8amsefhn
MD5

1026068197fccba0f8e38e8699482ba1
SHA1

53b8f5732b6ef43f891e0117733df63a3285bacb
SHA256

813acb9728de261599557c3f4312a0abe3211896d9e99b2deebf063ebe13e854
SHA512

9fad78cb808fa83494d5d6c69645c2aaf1370f64ce52257fcb41b3b39e7589ec030dd03a8326d38e1c16e7d9c1219fa43987b1a25c879a0c5bfb7ba6440b746c
SSDEEP

3072:xxKnbiwPqv0bx4SjTZWYlEpYF959R19Q9jl2FwGFo8fKTxhuFwTH0t:xxKbVqvOjTZWY/fIjl2FwGFo8fCuFwT6

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  1026068197fccba0f8e38e8699482ba1
- Size
  
  182KB
- MD5
  
  1026068197fccba0f8e38e8699482ba1
- SHA1
  
  53b8f5732b6ef43f891e0117733df63a3285bacb
- SHA256
  
  813acb9728de261599557c3f4312a0abe3211896d9e99b2deebf063ebe13e854
- SHA512
  
  9fad78cb808fa83494d5d6c69645c2aaf1370f64ce52257fcb41b3b39e7589ec030dd03a8326d38e1c16e7d9c1219fa43987b1a25c879a0c5bfb7ba6440b746c
- SSDEEP
  
  3072:xxKnbiwPqv0bx4SjTZWYlEpYF959R19Q9jl2FwGFo8fKTxhuFwTH0t:xxKbVqvOjTZWY/fIjl2FwGFo8fCuFwT6
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2