2eb1bc33cb108109297532ea7420c342205930fb4fbf39f6c54a135d46ee6c4a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

714862e0e5b2ef085be51cf2f9215dc0
Size

1.4MB
Sample

240124-dlzk4aghdr
MD5

714862e0e5b2ef085be51cf2f9215dc0
SHA1

b8d54bfb1396a884d45223c88781964357b644e6
SHA256

2eb1bc33cb108109297532ea7420c342205930fb4fbf39f6c54a135d46ee6c4a
SHA512

3dbe7da97b732498eb84e5fec1254ba51d138056994c7fcccfe9e831048658112f2baa05a70e1af39475f36fcf26355bc252b995ac7e6cc883ccc7c99844d59f
SSDEEP

24576:kkLj64BUIpE0i1JD0L4Q8es8MH/Fv7MXwbJ4/nkNnGtgjV7E9Lfc2nsBf6g644Aj:pdpEpDycesFzLJ4/kyYQ9Lc2fbArn

Score

8^/10

evasion persistence

Malware Config

Targets

- Target
  
  714862e0e5b2ef085be51cf2f9215dc0
- Size
  
  1.4MB
- MD5
  
  714862e0e5b2ef085be51cf2f9215dc0
- SHA1
  
  b8d54bfb1396a884d45223c88781964357b644e6
- SHA256
  
  2eb1bc33cb108109297532ea7420c342205930fb4fbf39f6c54a135d46ee6c4a
- SHA512
  
  3dbe7da97b732498eb84e5fec1254ba51d138056994c7fcccfe9e831048658112f2baa05a70e1af39475f36fcf26355bc252b995ac7e6cc883ccc7c99844d59f
- SSDEEP
  
  24576:kkLj64BUIpE0i1JD0L4Q8es8MH/Fv7MXwbJ4/nkNnGtgjV7E9Lfc2nsBf6g644Aj:pdpEpDycesFzLJ4/kyYQ9Lc2fbArn
Score

8^/10

evasion persistence
- Modifies Windows Firewall
  evasion
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Create or Modify System Process

Windows Service

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Create or Modify System Process

Windows Service

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasionpersistence

behavioral2

evasionpersistence