b82d1b4411a0c1fe348d6568ab755051d38c0daebebcef52961c9101bddaf15d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2ad8666ee39fe9b0cd94cd81d9791579
Size

42KB
Sample

231231-gmy8haachk
MD5

2ad8666ee39fe9b0cd94cd81d9791579
SHA1

477c1f5ea3e3023942c9f2a600f6fafac4ddff0b
SHA256

b82d1b4411a0c1fe348d6568ab755051d38c0daebebcef52961c9101bddaf15d
SHA512

e138a5db64d415c0159093a76c5849dda5ce6d914677f6b9fa73042b8fc5189dd03ffd2b33630b43dc109a2a382a04edd20488011def123da380b6c7011b57c2
SSDEEP

768:KhCopKcmlS6C2VFKzC03pE2jELYpCcZgV4PBnNosEpaBT:KhCbzfKOOpECRC+C4PBnNopgT

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  2ad8666ee39fe9b0cd94cd81d9791579
- Size
  
  42KB
- MD5
  
  2ad8666ee39fe9b0cd94cd81d9791579
- SHA1
  
  477c1f5ea3e3023942c9f2a600f6fafac4ddff0b
- SHA256
  
  b82d1b4411a0c1fe348d6568ab755051d38c0daebebcef52961c9101bddaf15d
- SHA512
  
  e138a5db64d415c0159093a76c5849dda5ce6d914677f6b9fa73042b8fc5189dd03ffd2b33630b43dc109a2a382a04edd20488011def123da380b6c7011b57c2
- SSDEEP
  
  768:KhCopKcmlS6C2VFKzC03pE2jELYpCcZgV4PBnNosEpaBT:KhCbzfKOOpECRC+C4PBnNopgT
Score

8^/10

persistence
- Sets service image path in registry
  persistence
- Deletes itself
- Executes dropped EXE
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2