f76b653dd6916f6e6d0fc689c6036e1a0bf2ab1314d70afdaf4bb8d99cf02d56 | Triage

Sharing

General

Target

25540759683bad52cc6f1e5276c79904
Size

9KB
Sample

231231-defveacahp
MD5

25540759683bad52cc6f1e5276c79904
SHA1

d16f761c4cfd4ea5f2fdccfd9d4813450b34a40f
SHA256

f76b653dd6916f6e6d0fc689c6036e1a0bf2ab1314d70afdaf4bb8d99cf02d56
SHA512

43c0ae82d4842eb028fb14c35b21731a7774b2b0626c041d8cce2647b25c749361125b731d4e5f226489255d1d78fafccf84577723f0ff9c8b94790ab678fb40
SSDEEP

192:YJM4hLNupBfLBKgcTkeRIeY1QWPIhcVtcsLnW8Pj8cUj6ge0YxmoZaU:YJ5BupFLBKgc1RINPICVtJBPj8BZehxD

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  25540759683bad52cc6f1e5276c79904
- Size
  
  9KB
- MD5
  
  25540759683bad52cc6f1e5276c79904
- SHA1
  
  d16f761c4cfd4ea5f2fdccfd9d4813450b34a40f
- SHA256
  
  f76b653dd6916f6e6d0fc689c6036e1a0bf2ab1314d70afdaf4bb8d99cf02d56
- SHA512
  
  43c0ae82d4842eb028fb14c35b21731a7774b2b0626c041d8cce2647b25c749361125b731d4e5f226489255d1d78fafccf84577723f0ff9c8b94790ab678fb40
- SSDEEP
  
  192:YJM4hLNupBfLBKgcTkeRIeY1QWPIhcVtcsLnW8Pj8cUj6ge0YxmoZaU:YJ5BupFLBKgc1RINPICVtJBPj8BZehxD
Score

7^/10

persistence
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2