384e0dd39368ed9233fff10c2e8513469296d1861ba4eb20da0c2a7b5d1b30ac | Triage

Sharing

Copy URL Twitter E-mail

General

Target

29382c4bba18b4edccd83b0e7f36b93d
Size

56KB
Sample

231231-fphg4ahchl
MD5

29382c4bba18b4edccd83b0e7f36b93d
SHA1

0616e2086b262e7b36871a9de43b1b54bd49e36c
SHA256

384e0dd39368ed9233fff10c2e8513469296d1861ba4eb20da0c2a7b5d1b30ac
SHA512

84c299d4a57eb441f208edbdd3708c4f440c1a16d520a0863adb93213c5fbc94d8cc6c25da19292d2a899e0d8da49551480c0dafc28bcd475b496f79bb3f98c8
SSDEEP

1536:bKGkpEJF5lYdyzgXZDpwN4rSVKJ8G92Wt5MxijU1Mn:PPXSyzgbwYSJGvdji

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  29382c4bba18b4edccd83b0e7f36b93d
- Size
  
  56KB
- MD5
  
  29382c4bba18b4edccd83b0e7f36b93d
- SHA1
  
  0616e2086b262e7b36871a9de43b1b54bd49e36c
- SHA256
  
  384e0dd39368ed9233fff10c2e8513469296d1861ba4eb20da0c2a7b5d1b30ac
- SHA512
  
  84c299d4a57eb441f208edbdd3708c4f440c1a16d520a0863adb93213c5fbc94d8cc6c25da19292d2a899e0d8da49551480c0dafc28bcd475b496f79bb3f98c8
- SSDEEP
  
  1536:bKGkpEJF5lYdyzgXZDpwN4rSVKJ8G92Wt5MxijU1Mn:PPXSyzgbwYSJGvdji
Score

8^/10

persistence
- Drops file in Drivers directory
- Sets service image path in registry
  persistence
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2