e8fc76a379b0aa0320b6ffa60a6a47b51b1ea1e28b46b3e6c495a0c78f020c0f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

980d30e7c1d5b9a68a243a20fd81f684
Size

41KB
Sample

240213-a6p1lsha72
MD5

980d30e7c1d5b9a68a243a20fd81f684
SHA1

9ae55720ddec68b5534b831431d97e604230335c
SHA256

e8fc76a379b0aa0320b6ffa60a6a47b51b1ea1e28b46b3e6c495a0c78f020c0f
SHA512

941fb46b2b59bdfa8e01540c78d41bd1c15871e38703feca688c2d0152e182aafe82643b2c45c7d63f5a04275d7474284743a5daa29b5092cecbda5759d4cff5
SSDEEP

768:SGFhEA7GlIBL0+Gx9XLc6E3iKOnUJHMNAJ6X3Auv6n8Cn9Lab/AzH:SwhD5Qo6KzBMNK8CA4j

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  980d30e7c1d5b9a68a243a20fd81f684
- Size
  
  41KB
- MD5
  
  980d30e7c1d5b9a68a243a20fd81f684
- SHA1
  
  9ae55720ddec68b5534b831431d97e604230335c
- SHA256
  
  e8fc76a379b0aa0320b6ffa60a6a47b51b1ea1e28b46b3e6c495a0c78f020c0f
- SHA512
  
  941fb46b2b59bdfa8e01540c78d41bd1c15871e38703feca688c2d0152e182aafe82643b2c45c7d63f5a04275d7474284743a5daa29b5092cecbda5759d4cff5
- SSDEEP
  
  768:SGFhEA7GlIBL0+Gx9XLc6E3iKOnUJHMNAJ6X3Auv6n8Cn9Lab/AzH:SwhD5Qo6KzBMNK8CA4j
Score

8^/10

persistence
- Sets DLL path for service in the registry
  persistence
- Deletes itself
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2