54662f731dc665ea5b5d7b2ee66d03109ebd4e681208da22bb61fdb91eca55f1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

36788a49799e83c0a77406c93758ceb5
Size

58KB
Sample

231231-pv8e5sceb3
MD5

36788a49799e83c0a77406c93758ceb5
SHA1

1c5f7440c71db6ee07c8054d0cc5d086326c8965
SHA256

54662f731dc665ea5b5d7b2ee66d03109ebd4e681208da22bb61fdb91eca55f1
SHA512

38ba08f6f710d42b29535b1d0b1dde7ce16d457920926edbb02eadaa55c602ed32c7726fcd00e85bcfac684333bf53d2a07409dff8c9ac7c38044c93eefd4a93
SSDEEP

1536:Ivm2WqfTdO2M22s1BtQRr4ru6DR7XEQnb4VuXJdi:IvPNrd4YQgu6DhHb443

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  36788a49799e83c0a77406c93758ceb5
- Size
  
  58KB
- MD5
  
  36788a49799e83c0a77406c93758ceb5
- SHA1
  
  1c5f7440c71db6ee07c8054d0cc5d086326c8965
- SHA256
  
  54662f731dc665ea5b5d7b2ee66d03109ebd4e681208da22bb61fdb91eca55f1
- SHA512
  
  38ba08f6f710d42b29535b1d0b1dde7ce16d457920926edbb02eadaa55c602ed32c7726fcd00e85bcfac684333bf53d2a07409dff8c9ac7c38044c93eefd4a93
- SSDEEP
  
  1536:Ivm2WqfTdO2M22s1BtQRr4ru6DR7XEQnb4VuXJdi:IvPNrd4YQgu6DhHb443
Score

8^/10

persistence
- Modifies AppInit DLL entries
  persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2