e18178d5f9412eede645ef4856cf9fd57cad8bf0358ebb73392ecdd0d97f4396 | Triage

Sharing

General

Target

72dfad61569a51702559e0a72aceabfc
Size

48KB
Sample

240124-z4kqjshbc8
MD5

72dfad61569a51702559e0a72aceabfc
SHA1

4992de9e242121bfa78c8d166db974578527bca5
SHA256

e18178d5f9412eede645ef4856cf9fd57cad8bf0358ebb73392ecdd0d97f4396
SHA512

6247a1f600284bdaa3059dd2965688eec7a20b3bfa039f34bd47b643c017ec3ecaa9514a099c97670367813be1ebaed1619f8ee2c88d514f4971df876bc96dfc
SSDEEP

768:oK2f1pfN8B7Zqf+Rbnh5PaUYzdaMIYQz86CHiPiBFTCk9TO7nESmjid1Trqfd0wW:oKgHuNqabn9mk2TC053jQ1Tr22wOMg1

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  72dfad61569a51702559e0a72aceabfc
- Size
  
  48KB
- MD5
  
  72dfad61569a51702559e0a72aceabfc
- SHA1
  
  4992de9e242121bfa78c8d166db974578527bca5
- SHA256
  
  e18178d5f9412eede645ef4856cf9fd57cad8bf0358ebb73392ecdd0d97f4396
- SHA512
  
  6247a1f600284bdaa3059dd2965688eec7a20b3bfa039f34bd47b643c017ec3ecaa9514a099c97670367813be1ebaed1619f8ee2c88d514f4971df876bc96dfc
- SSDEEP
  
  768:oK2f1pfN8B7Zqf+Rbnh5PaUYzdaMIYQz86CHiPiBFTCk9TO7nESmjid1Trqfd0wW:oKgHuNqabn9mk2TC053jQ1Tr22wOMg1
Score

8^/10

persistence
- Sets service image path in registry
  persistence
- Deletes itself
- Executes dropped EXE
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2