c2b212d66ca8491e82ca21eb0884029c9479bad8d8674db46ffc1096c14af374 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

36ac786149beacf1ec55e36e65c34fa7
Size

19KB
Sample

231231-p1kahadha9
MD5

36ac786149beacf1ec55e36e65c34fa7
SHA1

dce092f68e80dfa2a54474495df9956e930102e0
SHA256

c2b212d66ca8491e82ca21eb0884029c9479bad8d8674db46ffc1096c14af374
SHA512

fce22b6f083f3cd8fff1d32c2f6b6c556558402ed2e5c416490721933756c30e95076654b0d2308129df1aa8624f30940b9d00046cb48e881fb90681f827a430
SSDEEP

384:DC5HlV5Hyi4ao6uruyGLP3JA7asYfxkz9uW653CR03Ojbo8:DC5r5HB4ZU1/JA/O49uW65Su3Ojbo8

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  36ac786149beacf1ec55e36e65c34fa7
- Size
  
  19KB
- MD5
  
  36ac786149beacf1ec55e36e65c34fa7
- SHA1
  
  dce092f68e80dfa2a54474495df9956e930102e0
- SHA256
  
  c2b212d66ca8491e82ca21eb0884029c9479bad8d8674db46ffc1096c14af374
- SHA512
  
  fce22b6f083f3cd8fff1d32c2f6b6c556558402ed2e5c416490721933756c30e95076654b0d2308129df1aa8624f30940b9d00046cb48e881fb90681f827a430
- SSDEEP
  
  384:DC5HlV5Hyi4ao6uruyGLP3JA7asYfxkz9uW653CR03Ojbo8:DC5r5HB4ZU1/JA/O49uW65Su3Ojbo8
Score

8^/10

persistence
- Drops file in Drivers directory
- Modifies AppInit DLL entries
  persistence
- Deletes itself
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2