7a7549ac4dcdc6cd233dcbfd35151cdd29e4bc65c9d74a92fd80357627958516 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

64ec6feb4add0548d6e7376b9c7d7eda
Size

60KB
Sample

240118-j82xmagdg5
MD5

64ec6feb4add0548d6e7376b9c7d7eda
SHA1

c15f58189169a971ab42c9cccb928d5c81d5bcd2
SHA256

7a7549ac4dcdc6cd233dcbfd35151cdd29e4bc65c9d74a92fd80357627958516
SHA512

98f7f08082fc041698521a9836843ae76661d855db0fea5efe3c731cfaa7d99f922e8d30138bc32864ab6f281df9db399813bf6942327746159b676e9496443e
SSDEEP

1536:3q2PJXRFyamgrezENyyZF8S4/Fs9qjJvPiULUl:acXryamgAiyyZas9br

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  64ec6feb4add0548d6e7376b9c7d7eda
- Size
  
  60KB
- MD5
  
  64ec6feb4add0548d6e7376b9c7d7eda
- SHA1
  
  c15f58189169a971ab42c9cccb928d5c81d5bcd2
- SHA256
  
  7a7549ac4dcdc6cd233dcbfd35151cdd29e4bc65c9d74a92fd80357627958516
- SHA512
  
  98f7f08082fc041698521a9836843ae76661d855db0fea5efe3c731cfaa7d99f922e8d30138bc32864ab6f281df9db399813bf6942327746159b676e9496443e
- SSDEEP
  
  1536:3q2PJXRFyamgrezENyyZF8S4/Fs9qjJvPiULUl:acXryamgAiyyZas9br
Score

8^/10

persistence
- Sets DLL path for service in the registry
  persistence
- Deletes itself
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2