40324cb5a763b49f5791abf176db8a7bbca1d72876e6d5448239fe77db2092c1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

28756c338fdd950776c8c84231594044
Size

51KB
Sample

231231-e83rpsdccq
MD5

28756c338fdd950776c8c84231594044
SHA1

865ea46874ecf84fb9bc3d6e6c7ba4e8bc31e124
SHA256

40324cb5a763b49f5791abf176db8a7bbca1d72876e6d5448239fe77db2092c1
SHA512

283e1587386ecf86a00b6f538c1e92a5564a52ff7ba8276f89302022bcf4b523fb47797747d92004045856877bb53319d7c670bc4861dc70d09277cc98618e76
SSDEEP

1536:Z2q/cYGK8btPRn5RUPgKCq0zylRPubGdH+:ZF0Z5RU4/yLPqGN+

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  28756c338fdd950776c8c84231594044
- Size
  
  51KB
- MD5
  
  28756c338fdd950776c8c84231594044
- SHA1
  
  865ea46874ecf84fb9bc3d6e6c7ba4e8bc31e124
- SHA256
  
  40324cb5a763b49f5791abf176db8a7bbca1d72876e6d5448239fe77db2092c1
- SHA512
  
  283e1587386ecf86a00b6f538c1e92a5564a52ff7ba8276f89302022bcf4b523fb47797747d92004045856877bb53319d7c670bc4861dc70d09277cc98618e76
- SSDEEP
  
  1536:Z2q/cYGK8btPRn5RUPgKCq0zylRPubGdH+:ZF0Z5RU4/yLPqGN+
Score

8^/10

persistence
- Sets DLL path for service in the registry
  persistence
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2