d23f386a4fd7a98c1ac9f37ebd86ca07b2f583012329b9a2b3ac1ee83e1f100a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d23f386a4fd7a98c1ac9f37ebd86ca07b2f583012329b9a2b3ac1ee83e1f100a
Size

8KB
Sample

240530-dszjnsce3s
MD5

91586a5f7ba95b75a87b858db9930ee2
SHA1

eb208a4b8cb8ba1ab7c0998a42163d0df5eae805
SHA256

d23f386a4fd7a98c1ac9f37ebd86ca07b2f583012329b9a2b3ac1ee83e1f100a
SHA512

1994154c2ade2dfdb2df281d4a72783d2cfa5aced2c6c16b6884318444c78a3c2e2207fd25ad44af10beabcc4076d40b0e8025220554ed0d9b5404bc20a39af6
SSDEEP

192:9h4SFyvWohE5xf6YUBSL63SUJqtMblWN:9O+ohE2B13NJqtM

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  d23f386a4fd7a98c1ac9f37ebd86ca07b2f583012329b9a2b3ac1ee83e1f100a
- Size
  
  8KB
- MD5
  
  91586a5f7ba95b75a87b858db9930ee2
- SHA1
  
  eb208a4b8cb8ba1ab7c0998a42163d0df5eae805
- SHA256
  
  d23f386a4fd7a98c1ac9f37ebd86ca07b2f583012329b9a2b3ac1ee83e1f100a
- SHA512
  
  1994154c2ade2dfdb2df281d4a72783d2cfa5aced2c6c16b6884318444c78a3c2e2207fd25ad44af10beabcc4076d40b0e8025220554ed0d9b5404bc20a39af6
- SSDEEP
  
  192:9h4SFyvWohE5xf6YUBSL63SUJqtMblWN:9O+ohE2B13NJqtM
Score

9^/10

persistence
- UPX dump on OEP (original entry point)
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2