7b3a7ef09e0dda6d92dd20e14a81688577be4fb2c928d38bdbf81bdf7a82de53 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

13d08c41f10ca8f0e256d9bf7d0f923a
Size

15KB
Sample

231230-ktnxwsdcbn
MD5

13d08c41f10ca8f0e256d9bf7d0f923a
SHA1

67a8a56ad894df7dd2dd5a7ac2b5c28e53d9b69d
SHA256

7b3a7ef09e0dda6d92dd20e14a81688577be4fb2c928d38bdbf81bdf7a82de53
SHA512

e66a19a02a6a0c3272a542093a7cbfdc621559b34f189238a5f9c9d907248e2e907a0c73973ba87df0d739f0b224c18a12268e0cfacecf73de6a44c56c0cf7e3
SSDEEP

384:wZ3cJoOxFZv8SLUY51NkDjk6kRiz1v+12Qe7TG:BHxLR4W2Djk6kRa1v+gTG

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  13d08c41f10ca8f0e256d9bf7d0f923a
- Size
  
  15KB
- MD5
  
  13d08c41f10ca8f0e256d9bf7d0f923a
- SHA1
  
  67a8a56ad894df7dd2dd5a7ac2b5c28e53d9b69d
- SHA256
  
  7b3a7ef09e0dda6d92dd20e14a81688577be4fb2c928d38bdbf81bdf7a82de53
- SHA512
  
  e66a19a02a6a0c3272a542093a7cbfdc621559b34f189238a5f9c9d907248e2e907a0c73973ba87df0d739f0b224c18a12268e0cfacecf73de6a44c56c0cf7e3
- SSDEEP
  
  384:wZ3cJoOxFZv8SLUY51NkDjk6kRiz1v+12Qe7TG:BHxLR4W2Djk6kRa1v+gTG
Score

8^/10

persistence
- Adds policy Run key to start application
  persistence
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2