eb3ca646cb614b738a490b9c9d3e2be52e2198a4e9002776496957299a8e8930 | Triage

Sharing

General

Target

a9df637248d2d0dcecbe64a12f5ad91e
Size

15KB
Sample

240227-w99ebagf8s
MD5

a9df637248d2d0dcecbe64a12f5ad91e
SHA1

2032dcb4ea72d85fd6417534b44155a88c7c1141
SHA256

eb3ca646cb614b738a490b9c9d3e2be52e2198a4e9002776496957299a8e8930
SHA512

7af93c62e0625cc72a0d068d762223296f3d807204b4d222d6df315ab35ff241efa7234f70861589aaa61ca9494c8a9268ca12d6a62a7cc5925096a0e0f8f354
SSDEEP

384:j2FLS0+hIgcKIuq6NgJ6U+IqJ/iTMktppf4JwY5d:jYS0QwKI5CUPqJ/intr4C2d

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  a9df637248d2d0dcecbe64a12f5ad91e
- Size
  
  15KB
- MD5
  
  a9df637248d2d0dcecbe64a12f5ad91e
- SHA1
  
  2032dcb4ea72d85fd6417534b44155a88c7c1141
- SHA256
  
  eb3ca646cb614b738a490b9c9d3e2be52e2198a4e9002776496957299a8e8930
- SHA512
  
  7af93c62e0625cc72a0d068d762223296f3d807204b4d222d6df315ab35ff241efa7234f70861589aaa61ca9494c8a9268ca12d6a62a7cc5925096a0e0f8f354
- SSDEEP
  
  384:j2FLS0+hIgcKIuq6NgJ6U+IqJ/iTMktppf4JwY5d:jYS0QwKI5CUPqJ/intr4C2d
Score

8^/10

persistence
- Drops file in Drivers directory
- Modifies AppInit DLL entries
  persistence
- Deletes itself
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2