20b4a7836ef3fb6d50dc468838d121fbaa1372b4627d5ecca4ab2e6e2300ce38 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

20b4a7836ef3fb6d50dc468838d121fbaa1372b4627d5ecca4ab2e6e2300ce38
Size

235KB
Sample

240326-wsxdesge83
MD5

263f1451d06ff3005ee452357bc775f8
SHA1

00f6dd1335fdf260a34d39d88871c1ad2edebbd1
SHA256

20b4a7836ef3fb6d50dc468838d121fbaa1372b4627d5ecca4ab2e6e2300ce38
SHA512

2ebfe594be10caf6072cfc126e9ac788c91eabc5e7d7f9246d970d2c6cb411242f558891b3cee88d69ac09f622db9ff30c93d3005234f16141ff238e8e55b59a
SSDEEP

3072:aJOcumc7+5DHhH0qjuIWvJ2XVYxVJ/PWiud3uWHWABIippBIbLk5:cOCcq3BjunvJ2lYjJ/PWiuvBRppB0k5

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  20b4a7836ef3fb6d50dc468838d121fbaa1372b4627d5ecca4ab2e6e2300ce38
- Size
  
  235KB
- MD5
  
  263f1451d06ff3005ee452357bc775f8
- SHA1
  
  00f6dd1335fdf260a34d39d88871c1ad2edebbd1
- SHA256
  
  20b4a7836ef3fb6d50dc468838d121fbaa1372b4627d5ecca4ab2e6e2300ce38
- SHA512
  
  2ebfe594be10caf6072cfc126e9ac788c91eabc5e7d7f9246d970d2c6cb411242f558891b3cee88d69ac09f622db9ff30c93d3005234f16141ff238e8e55b59a
- SSDEEP
  
  3072:aJOcumc7+5DHhH0qjuIWvJ2XVYxVJ/PWiud3uWHWABIippBIbLk5:cOCcq3BjunvJ2lYjJ/PWiuvBRppB0k5
Score

8^/10

persistence
- Modifies AppInit DLL entries
  persistence
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2