21f1a54a58fd87591c453c1070b38f092794e2a290fa9b292748788276c914aa | Triage

Sharing

General

Target

21f1a54a58fd87591c453c1070b38f092794e2a290fa9b292748788276c914aa
Size

792KB
Sample

240608-yw56vaff3z
MD5

507a8427c982e5f90bd3b3ed11f747e5
SHA1

fdd049e0c9ac8df8e318fc5df2c4945a5ad19c7d
SHA256

21f1a54a58fd87591c453c1070b38f092794e2a290fa9b292748788276c914aa
SHA512

57cea3bb0b4a1e6418a03551c3f4aa40113a20546bef8c09a8832158856cb26113ad24d2998e5946eba9e7716a0276645a8406b6bf6b8503ee86eb0a8622f9ce
SSDEEP

6144:qi05kH9OyU2uv5SRf/FWgFgtdgqIRAUW9kVYeVprU4wfhTv5xD2ZP0GVGdXcukT4:1rHGPv5SmpteDmUWuVZkxikdXcq

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  21f1a54a58fd87591c453c1070b38f092794e2a290fa9b292748788276c914aa
- Size
  
  792KB
- MD5
  
  507a8427c982e5f90bd3b3ed11f747e5
- SHA1
  
  fdd049e0c9ac8df8e318fc5df2c4945a5ad19c7d
- SHA256
  
  21f1a54a58fd87591c453c1070b38f092794e2a290fa9b292748788276c914aa
- SHA512
  
  57cea3bb0b4a1e6418a03551c3f4aa40113a20546bef8c09a8832158856cb26113ad24d2998e5946eba9e7716a0276645a8406b6bf6b8503ee86eb0a8622f9ce
- SSDEEP
  
  6144:qi05kH9OyU2uv5SRf/FWgFgtdgqIRAUW9kVYeVprU4wfhTv5xD2ZP0GVGdXcukT4:1rHGPv5SmpteDmUWuVZkxikdXcq
Score

7^/10

persistence
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Scheduled Task/Job

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Scheduled Task/Job

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2