748f13c65c0af0241859a9e35c5aeaf91b09bc452cf6c69837a7f5bf1cd59d1a | Triage

Sharing

General

Target

896910d182308d3a870129649dd87690
Size

124KB
Sample

240202-nrbfkafagl
MD5

896910d182308d3a870129649dd87690
SHA1

fb7e274d1081f1ac472870611b2fb53e925afe28
SHA256

748f13c65c0af0241859a9e35c5aeaf91b09bc452cf6c69837a7f5bf1cd59d1a
SHA512

a3b6204413c419d4e35853d1ee950f8efcafc35a052fd6c23162abc316ade20b698895dda2943ea581bd36e9bbdeb0db8ceff7f72b9f1de39b52b57509846129
SSDEEP

3072:Av8cOEfXqojN2I52qgG1xiiLiHo5LWAE5zY:Av8cOEfXqogfzG11X6z

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  896910d182308d3a870129649dd87690
- Size
  
  124KB
- MD5
  
  896910d182308d3a870129649dd87690
- SHA1
  
  fb7e274d1081f1ac472870611b2fb53e925afe28
- SHA256
  
  748f13c65c0af0241859a9e35c5aeaf91b09bc452cf6c69837a7f5bf1cd59d1a
- SHA512
  
  a3b6204413c419d4e35853d1ee950f8efcafc35a052fd6c23162abc316ade20b698895dda2943ea581bd36e9bbdeb0db8ceff7f72b9f1de39b52b57509846129
- SSDEEP
  
  3072:Av8cOEfXqojN2I52qgG1xiiLiHo5LWAE5zY:Av8cOEfXqogfzG11X6z
Score

8^/10

persistence
- Modifies AppInit DLL entries
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2