814a20278763d0ac0f479a2f5bcad533b185697bfd3d44c5eb436b109baab6ba | Triage

Sharing

General

Target

25ac0b6784635c06405969088cfbd3c7
Size

3.3MB
Sample

231231-dk7kbagag8
MD5

25ac0b6784635c06405969088cfbd3c7
SHA1

480ef59da100450c07d3e6881978d0e3639b1bc5
SHA256

814a20278763d0ac0f479a2f5bcad533b185697bfd3d44c5eb436b109baab6ba
SHA512

8b7cbb179fbe434733e009afbd0139b494b3c1526f3a4f330e6d55cff500e525b10dec32cee321c0a47859aff14e376c0693494de3a924cf46cdac4406bb5455
SSDEEP

98304:IXJGErRCdWrWGZp/Q0VPXuxHImiYyF5BdT:Inr8sKop1XuZy

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  25ac0b6784635c06405969088cfbd3c7
- Size
  
  3.3MB
- MD5
  
  25ac0b6784635c06405969088cfbd3c7
- SHA1
  
  480ef59da100450c07d3e6881978d0e3639b1bc5
- SHA256
  
  814a20278763d0ac0f479a2f5bcad533b185697bfd3d44c5eb436b109baab6ba
- SHA512
  
  8b7cbb179fbe434733e009afbd0139b494b3c1526f3a4f330e6d55cff500e525b10dec32cee321c0a47859aff14e376c0693494de3a924cf46cdac4406bb5455
- SSDEEP
  
  98304:IXJGErRCdWrWGZp/Q0VPXuxHImiYyF5BdT:Inr8sKop1XuZy
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2