2f59d3b9fe60a88c031b4aef23c3721c5958fb927915ae84a17df436963384c9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

174e5173ced57aa30e931ffde9074596
Size

52KB
Sample

231230-nrcnmabhh9
MD5

174e5173ced57aa30e931ffde9074596
SHA1

9c0ef1eda723d0e6090acb22bf050ffd1f0382c6
SHA256

2f59d3b9fe60a88c031b4aef23c3721c5958fb927915ae84a17df436963384c9
SHA512

0ab4f850640d5ee71c8d1d3c266624b980b8b64f84cbc3069b8769a4891b67681e14c4c50ac144d7f08c88d2bcad4d4e22f8797dc35b9bd5330c2b88dccb176e
SSDEEP

1536:1jXTSgE21qRVP6huSwXD/DE2uhmMoZDEgKF+:B/2iaDrQT4og

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  174e5173ced57aa30e931ffde9074596
- Size
  
  52KB
- MD5
  
  174e5173ced57aa30e931ffde9074596
- SHA1
  
  9c0ef1eda723d0e6090acb22bf050ffd1f0382c6
- SHA256
  
  2f59d3b9fe60a88c031b4aef23c3721c5958fb927915ae84a17df436963384c9
- SHA512
  
  0ab4f850640d5ee71c8d1d3c266624b980b8b64f84cbc3069b8769a4891b67681e14c4c50ac144d7f08c88d2bcad4d4e22f8797dc35b9bd5330c2b88dccb176e
- SSDEEP
  
  1536:1jXTSgE21qRVP6huSwXD/DE2uhmMoZDEgKF+:B/2iaDrQT4og
Score

8^/10

persistence
- Adds policy Run key to start application
  persistence
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2