6c667639fccc9d38880f404e083da944270247266b0da49c99a86dda01849eb9 | Triage

Sharing

General

Target

395a8d049132f9d3272b7ad7d921682e
Size

31KB
Sample

231231-rh3egabgbq
MD5

395a8d049132f9d3272b7ad7d921682e
SHA1

a9a5d0ee3fab13df8e2d4ab62162faf93a1e7aec
SHA256

6c667639fccc9d38880f404e083da944270247266b0da49c99a86dda01849eb9
SHA512

6daad53ccc152656c1c9a4f2c3918a58794795b386c4e2ca240adc9e9c55ef57f81dc5ea1bfe8d4e5303618453bd365fb9b9e2ea9866c05f13b53dc9385cbc15
SSDEEP

384:blLU44nwgycRejM9kM/P3IdulSaxJYRQve59HC5npRJRfGe7uSUvqPvDaC:FU44nV5WK/vtise5YpxfN7LUvqjn

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  395a8d049132f9d3272b7ad7d921682e
- Size
  
  31KB
- MD5
  
  395a8d049132f9d3272b7ad7d921682e
- SHA1
  
  a9a5d0ee3fab13df8e2d4ab62162faf93a1e7aec
- SHA256
  
  6c667639fccc9d38880f404e083da944270247266b0da49c99a86dda01849eb9
- SHA512
  
  6daad53ccc152656c1c9a4f2c3918a58794795b386c4e2ca240adc9e9c55ef57f81dc5ea1bfe8d4e5303618453bd365fb9b9e2ea9866c05f13b53dc9385cbc15
- SSDEEP
  
  384:blLU44nwgycRejM9kM/P3IdulSaxJYRQve59HC5npRJRfGe7uSUvqPvDaC:FU44nV5WK/vtise5YpxfN7LUvqjn
Score

7^/10

persistence
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2