9996b1329a7f71432e25b092cbc77a162344c2531f222bba96add176ad3c83c0 | Triage

Sharing

General

Target

2b5cff0897686a2750f8761c64a5555f
Size

15KB
Sample

231231-gyx5ksfbh8
MD5

2b5cff0897686a2750f8761c64a5555f
SHA1

dc65cf46526c5b04f2c1bab0bceb413c35f1f7f4
SHA256

9996b1329a7f71432e25b092cbc77a162344c2531f222bba96add176ad3c83c0
SHA512

5a6bfd83a40aafc038d8ca969e325b72b3c6f8113ed4b50e07ae84d7cd406ee07cb5d2987f89ae33beb8185871d58d59d1720ae0a0ac3c8764d261c1227e4d5e
SSDEEP

384:NkqD50TkFdPiXWIn0lPybUI7vHLcbSYOHl:NGTkFdPGWIn0cN6l

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  2b5cff0897686a2750f8761c64a5555f
- Size
  
  15KB
- MD5
  
  2b5cff0897686a2750f8761c64a5555f
- SHA1
  
  dc65cf46526c5b04f2c1bab0bceb413c35f1f7f4
- SHA256
  
  9996b1329a7f71432e25b092cbc77a162344c2531f222bba96add176ad3c83c0
- SHA512
  
  5a6bfd83a40aafc038d8ca969e325b72b3c6f8113ed4b50e07ae84d7cd406ee07cb5d2987f89ae33beb8185871d58d59d1720ae0a0ac3c8764d261c1227e4d5e
- SSDEEP
  
  384:NkqD50TkFdPiXWIn0lPybUI7vHLcbSYOHl:NGTkFdPGWIn0cN6l
Score

8^/10

persistence
- Adds policy Run key to start application
  persistence
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2