aca18df7e67c551cf4955f4e21cb494db871c2560459c1ce1705836e48ce62a9 | Triage

Sharing

General

Target

1cb8c58b93a5797e52e2020cf283b950
Size

368KB
Sample

231230-z491fachd4
MD5

1cb8c58b93a5797e52e2020cf283b950
SHA1

f74cc773ee4fd553892c0f78cc62d0a0812a770d
SHA256

aca18df7e67c551cf4955f4e21cb494db871c2560459c1ce1705836e48ce62a9
SHA512

92fd462896e1c9a1c1c783c7e99ba5c0cb1a3601a0f6f70b1ca0883a0f2cb6831e1cdb6b8285189693ff3d505b229ffa81f4332e1656b186979b9e019a23f44e
SSDEEP

6144:mzlQX1xqaGqqCG6K3SDdAlYUor8uyK1INkVsuaRaU6mHGj:6+nU0Tz40aRz6mHGj

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  1cb8c58b93a5797e52e2020cf283b950
- Size
  
  368KB
- MD5
  
  1cb8c58b93a5797e52e2020cf283b950
- SHA1
  
  f74cc773ee4fd553892c0f78cc62d0a0812a770d
- SHA256
  
  aca18df7e67c551cf4955f4e21cb494db871c2560459c1ce1705836e48ce62a9
- SHA512
  
  92fd462896e1c9a1c1c783c7e99ba5c0cb1a3601a0f6f70b1ca0883a0f2cb6831e1cdb6b8285189693ff3d505b229ffa81f4332e1656b186979b9e019a23f44e
- SSDEEP
  
  6144:mzlQX1xqaGqqCG6K3SDdAlYUor8uyK1INkVsuaRaU6mHGj:6+nU0Tz40aRz6mHGj
Score

8^/10

persistence
- Modifies Installed Components in the registry
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2