b2267b3e78ad1005fb1ffce7c9d5b1f6da20c49ee9a9abb7d9141d1be6f5d610 | Triage

Sharing

General

Target

7d258fe04ad70306ae1485960b451957
Size

327KB
Sample

240128-psyg6aafd4
MD5

7d258fe04ad70306ae1485960b451957
SHA1

93eed92d9c8951625b507e6450d79b28c003a8c3
SHA256

b2267b3e78ad1005fb1ffce7c9d5b1f6da20c49ee9a9abb7d9141d1be6f5d610
SHA512

0ec6c116f7bfe341bbb825844c1c8a44191899644b0e350a9a324ff45a57d3ae0204307ee27283fce9cca4f1e2423231f7b38a05a119e170d40e86924afb751a
SSDEEP

6144:JjcbHRm3e5nN8baOP01rD6JjZ5HdKn6U+FLSmi/:mN4tjZldKn6U+5SF/

Score

8^/10

evasion persistence

Malware Config

Targets

- Target
  
  7d258fe04ad70306ae1485960b451957
- Size
  
  327KB
- MD5
  
  7d258fe04ad70306ae1485960b451957
- SHA1
  
  93eed92d9c8951625b507e6450d79b28c003a8c3
- SHA256
  
  b2267b3e78ad1005fb1ffce7c9d5b1f6da20c49ee9a9abb7d9141d1be6f5d610
- SHA512
  
  0ec6c116f7bfe341bbb825844c1c8a44191899644b0e350a9a324ff45a57d3ae0204307ee27283fce9cca4f1e2423231f7b38a05a119e170d40e86924afb751a
- SSDEEP
  
  6144:JjcbHRm3e5nN8baOP01rD6JjZ5HdKn6U+FLSmi/:mN4tjZldKn6U+5SF/
Score

8^/10

evasion persistence
- Disables taskbar notifications via registry modification
  evasion
- Modifies Installed Components in the registry
  persistence
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

evasionpersistence

behavioral2