72a29552834c59b6c49d08e3e75a31d517531edc9fdf2b50f96ebe6fbc6de14b | Triage

Sharing

General

Target

548b99c7ec0059f88b2cfb3028ac71e1
Size

46KB
Sample

240111-zlpxjsgdbj
MD5

548b99c7ec0059f88b2cfb3028ac71e1
SHA1

78a869e6e4c2e9bf3a51d63917f470569d88753b
SHA256

72a29552834c59b6c49d08e3e75a31d517531edc9fdf2b50f96ebe6fbc6de14b
SHA512

11437c73d6ca52abe6a699f63b76ede2fc9361d14c0555cf8e5fb0e0dbb7a5ce06f20bc594808073f48ec0128707b903cfe8374ed2e2a823b85eeaa2e79fe42e
SSDEEP

768:Ps+M1PzSw++TvQJHsHkiKLMB/p68VszmHAqs9wqv/+P7GzkRt/qL/Co03TCkDLHx:0+aSNZJXibNjM9wI/M7Gzk72/CpDCuR

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  548b99c7ec0059f88b2cfb3028ac71e1
- Size
  
  46KB
- MD5
  
  548b99c7ec0059f88b2cfb3028ac71e1
- SHA1
  
  78a869e6e4c2e9bf3a51d63917f470569d88753b
- SHA256
  
  72a29552834c59b6c49d08e3e75a31d517531edc9fdf2b50f96ebe6fbc6de14b
- SHA512
  
  11437c73d6ca52abe6a699f63b76ede2fc9361d14c0555cf8e5fb0e0dbb7a5ce06f20bc594808073f48ec0128707b903cfe8374ed2e2a823b85eeaa2e79fe42e
- SSDEEP
  
  768:Ps+M1PzSw++TvQJHsHkiKLMB/p68VszmHAqs9wqv/+P7GzkRt/qL/Co03TCkDLHx:0+aSNZJXibNjM9wI/M7Gzk72/CpDCuR
Score

8^/10

persistence
- Sets service image path in registry
  persistence
- Deletes itself
- Executes dropped EXE
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2