8d1c5fbf5228ddf65801992b3f5b7c255a0d82572dde0dde8a1d38a7dc46888a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4d9f9ef316b9b61a2132f428080dcb68
Size

25KB
Sample

240109-hjkflsehak
MD5

4d9f9ef316b9b61a2132f428080dcb68
SHA1

d93cf7de05a95cc4884ade60631aad08c904b208
SHA256

8d1c5fbf5228ddf65801992b3f5b7c255a0d82572dde0dde8a1d38a7dc46888a
SHA512

259b7951fe283b86b9e4c4cd6e123fcec73e527c4f47e73e1ed9b72c07c9ce8213215bf292d0f4d5df53d7ad3d2b3b9d1b8a1335fa70611eb41d582f4320c84a
SSDEEP

768:bOzI2uclgHFu8YINOsU28b7ex56K5558ucN:sVu9xbEVXokkcN

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  4d9f9ef316b9b61a2132f428080dcb68
- Size
  
  25KB
- MD5
  
  4d9f9ef316b9b61a2132f428080dcb68
- SHA1
  
  d93cf7de05a95cc4884ade60631aad08c904b208
- SHA256
  
  8d1c5fbf5228ddf65801992b3f5b7c255a0d82572dde0dde8a1d38a7dc46888a
- SHA512
  
  259b7951fe283b86b9e4c4cd6e123fcec73e527c4f47e73e1ed9b72c07c9ce8213215bf292d0f4d5df53d7ad3d2b3b9d1b8a1335fa70611eb41d582f4320c84a
- SSDEEP
  
  768:bOzI2uclgHFu8YINOsU28b7ex56K5558ucN:sVu9xbEVXokkcN
Score

8^/10

persistence
- Drops file in Drivers directory
- Sets service image path in registry
  persistence
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2