79c913d35ab10682693d45fab694f4928777b5aa7260a8fef48872d4d80ed937 | Triage

Sharing

General

Target

df588b3a32449fe3763a4745bb5d78a3.exe
Size

899KB
Sample

231230-xh3ywsdga5
MD5

df588b3a32449fe3763a4745bb5d78a3
SHA1

d1d4cfc5604c85b93179820c9b028c4cb560a758
SHA256

79c913d35ab10682693d45fab694f4928777b5aa7260a8fef48872d4d80ed937
SHA512

83972cb678f8554081b7fc705b452066c475dae4798ff9baa618ccc403a96410b429ba1cb9dcb30ccfc614981a4205f60090eedb378e9fc0cbeb1ba6a101d409
SSDEEP

3072:MGjhaq5iL0beJQZt32wLji5DlsODxRPNDkjJHzW9hUd56JsuBSjwA2i1vP2i1a1D:Hha8iAx+1zwjJHd6vB/ANMfqyYF

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  df588b3a32449fe3763a4745bb5d78a3.exe
- Size
  
  899KB
- MD5
  
  df588b3a32449fe3763a4745bb5d78a3
- SHA1
  
  d1d4cfc5604c85b93179820c9b028c4cb560a758
- SHA256
  
  79c913d35ab10682693d45fab694f4928777b5aa7260a8fef48872d4d80ed937
- SHA512
  
  83972cb678f8554081b7fc705b452066c475dae4798ff9baa618ccc403a96410b429ba1cb9dcb30ccfc614981a4205f60090eedb378e9fc0cbeb1ba6a101d409
- SSDEEP
  
  3072:MGjhaq5iL0beJQZt32wLji5DlsODxRPNDkjJHzW9hUd56JsuBSjwA2i1vP2i1a1D:Hha8iAx+1zwjJHd6vB/ANMfqyYF
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2