008aed35a75300aa79bae444c05d65e2086118c7ddf3d7565f1d34db3047b0eb | Triage

Sharing

General

Target

7105842a0d1fb3a4d345fa356cf61790
Size

240KB
Sample

240124-bb5y1sebgm
MD5

7105842a0d1fb3a4d345fa356cf61790
SHA1

a48cd80abba7e0e97bd57467c8e3e717e25190c2
SHA256

008aed35a75300aa79bae444c05d65e2086118c7ddf3d7565f1d34db3047b0eb
SHA512

1ca6e7215309fdd7d82c9fbbb97717c3bf161f23210dfc1711321dba679b9e0e4c4e7f7cc2897dda629ea69fdde2fec812d36f5832d0f8787d5e3dc072b75115
SSDEEP

3072:PWjwVEHJppwEFkTcArXqj7107kD3uvAecUa2Phbg0sSyfcbSz:PWjwVEHJTtifqj7e7A3zUFtg0sNz

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  7105842a0d1fb3a4d345fa356cf61790
- Size
  
  240KB
- MD5
  
  7105842a0d1fb3a4d345fa356cf61790
- SHA1
  
  a48cd80abba7e0e97bd57467c8e3e717e25190c2
- SHA256
  
  008aed35a75300aa79bae444c05d65e2086118c7ddf3d7565f1d34db3047b0eb
- SHA512
  
  1ca6e7215309fdd7d82c9fbbb97717c3bf161f23210dfc1711321dba679b9e0e4c4e7f7cc2897dda629ea69fdde2fec812d36f5832d0f8787d5e3dc072b75115
- SSDEEP
  
  3072:PWjwVEHJppwEFkTcArXqj7107kD3uvAecUa2Phbg0sSyfcbSz:PWjwVEHJTtifqj7e7A3zUFtg0sNz
Score

8^/10

persistence
- Sets DLL path for service in the registry
  persistence
- Deletes itself
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2