409e95963a01ffe824db79ab55f6eccc67b65a164de8869bc8532e62e48fc32f | Triage

Resubmissions

14/02/2024, 03:57

240214-eh5tdahe96 8

14/02/2024, 03:56

240214-ehhnvagd21 8

Sharing

Copy URL Twitter E-mail

General

Target

240214-egvl1sgc9v_pw_infected.zip
Size

61KB
Sample

240214-ehhnvagd21
MD5

435eacd2f385a8f4b25b9eb947ce2e14
SHA1

2f40f0821c0f5328ab60e6e3fb46d508c7c28720
SHA256

409e95963a01ffe824db79ab55f6eccc67b65a164de8869bc8532e62e48fc32f
SHA512

5f486baf8bfb3febbc035cf86c80c63d801ba0b4c986054993c5629d1b16df92a901ad03d52a02c8292c8cb38de638921a47f807c58cb6aa2127462933d3d34f
SSDEEP

1536:XdS35SNFQ7NET79EmORaQBUNJ1uuI6iX/PIY5Bayk:Xd4Yl9GzkiXIS4

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  9ab0d762851ca70d12f127e94c78d8d9
- Size
  
  76KB
- MD5
  
  9ab0d762851ca70d12f127e94c78d8d9
- SHA1
  
  b50b0b7d4b0cc84ae3a6c3d37191eac7df92215d
- SHA256
  
  e5187894f406eb7148834f24da8425e108ff85398f37823189bfe8162667a697
- SHA512
  
  8d2b2bd470d6a78153614f2acce2d735bea250ea4b4b0f6cdafa4ad350ba4664e5acea3943d0853c8efcec5cb4d8257dca51b8a84b28ea02dffa5d31da71916a
- SSDEEP
  
  1536:OyoV4sF9aZUYCH2kORLOu8wyIyhst8Xg2g6vPVHHYq/O4FdfqYuuTGl+bWAREopf:rMIZcHwHythsKXg2g6VfO4yuTGtSEopf
Score

8^/10

persistence
- Modifies AppInit DLL entries
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2