16149fe4aa159035e3421c31d632ba17ab018a9792d8d8ea283739fb94b14d28 | Triage

Sharing

General

Target

8720d04c541e19359d9434e2a671f904
Size

415KB
Sample

240201-rwzkqsheal
MD5

8720d04c541e19359d9434e2a671f904
SHA1

516f1b100dc2fdd82b30e9dfa8297ffe6fbe6965
SHA256

16149fe4aa159035e3421c31d632ba17ab018a9792d8d8ea283739fb94b14d28
SHA512

d40749816a61772c20934a3518f177820e7b9849f19f3e5e57539b3c12edf70be4d232b1c14d5aeff9dcd52cd233314d44ad8fc2d5322cc6eb7d4fa2e62a7aeb
SSDEEP

6144:yfmXV93ikswB7SJcog4mOy74036KkOeMK+xdGb2GxEf+SZ+wr9YFLiby64XlJot:CKFswL4Hy740qKjLEvSf+oYFLzHot

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  8720d04c541e19359d9434e2a671f904
- Size
  
  415KB
- MD5
  
  8720d04c541e19359d9434e2a671f904
- SHA1
  
  516f1b100dc2fdd82b30e9dfa8297ffe6fbe6965
- SHA256
  
  16149fe4aa159035e3421c31d632ba17ab018a9792d8d8ea283739fb94b14d28
- SHA512
  
  d40749816a61772c20934a3518f177820e7b9849f19f3e5e57539b3c12edf70be4d232b1c14d5aeff9dcd52cd233314d44ad8fc2d5322cc6eb7d4fa2e62a7aeb
- SSDEEP
  
  6144:yfmXV93ikswB7SJcog4mOy74036KkOeMK+xdGb2GxEf+SZ+wr9YFLiby64XlJot:CKFswL4Hy740qKjLEvSf+oYFLzHot
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2