f16d44151db20fb23e0f282931fa937f485e7f0725716238c631a583169c7ff8 | Triage

Sharing

General

Target

c83006e7ae807153f6fc0f13f4550a3a
Size

761KB
Sample

240314-kmf9gafb7s
MD5

c83006e7ae807153f6fc0f13f4550a3a
SHA1

66e36a66084c4727b58503fe92a1512bc04c33c8
SHA256

f16d44151db20fb23e0f282931fa937f485e7f0725716238c631a583169c7ff8
SHA512

9fa5df46a1f4b71948d8e25a35fdfc41f6850e93c5b7ac03024bdd426cb138cfc325bca1048644c4ea50a7b184b2fb839aa2f49cabaaee2618e2e4b012818aea
SSDEEP

12288:18IdtzeU0qKiWKQ0zu8zdpDOPReZs8W8R66WZF3Z4mxxbARuxuYT6Vxxa1/:18Idtz77KiWB0KU5OpeK8K6WZQmXbpFT

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  c83006e7ae807153f6fc0f13f4550a3a
- Size
  
  761KB
- MD5
  
  c83006e7ae807153f6fc0f13f4550a3a
- SHA1
  
  66e36a66084c4727b58503fe92a1512bc04c33c8
- SHA256
  
  f16d44151db20fb23e0f282931fa937f485e7f0725716238c631a583169c7ff8
- SHA512
  
  9fa5df46a1f4b71948d8e25a35fdfc41f6850e93c5b7ac03024bdd426cb138cfc325bca1048644c4ea50a7b184b2fb839aa2f49cabaaee2618e2e4b012818aea
- SSDEEP
  
  12288:18IdtzeU0qKiWKQ0zu8zdpDOPReZs8W8R66WZF3Z4mxxbARuxuYT6Vxxa1/:18Idtz77KiWB0KU5OpeK8K6WZQmXbpFT
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2