a7c133622afdc32a37fb85c99ceb5620339ad2822883765d4187c7bb31de9365 | Triage

Sharing

General

Target

software.exe
Size

462KB
Sample

240710-1rymbavamh
MD5

2ec4988cd07242aed1fb9bc48efdd649
SHA1

9bd3906b03db1be245037fe5d98c9a5d7a304b70
SHA256

a7c133622afdc32a37fb85c99ceb5620339ad2822883765d4187c7bb31de9365
SHA512

d095896d0cbb762506269efb64f9162bb64cbf86f24df51ba8ef6e55e0a5f507d9c28e739e8a679086d468e8563ab658a3989e8b511c3fe3279cf880548cd7dc
SSDEEP

12288:ZRzeX0VUlQhOsGSZgEsAwfbxVnE9w2prwD64YbD:ZRzeX0VUlQUsGSZgEsAwfbjE9dxw34D

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  software.exe
- Size
  
  462KB
- MD5
  
  2ec4988cd07242aed1fb9bc48efdd649
- SHA1
  
  9bd3906b03db1be245037fe5d98c9a5d7a304b70
- SHA256
  
  a7c133622afdc32a37fb85c99ceb5620339ad2822883765d4187c7bb31de9365
- SHA512
  
  d095896d0cbb762506269efb64f9162bb64cbf86f24df51ba8ef6e55e0a5f507d9c28e739e8a679086d468e8563ab658a3989e8b511c3fe3279cf880548cd7dc
- SSDEEP
  
  12288:ZRzeX0VUlQhOsGSZgEsAwfbxVnE9w2prwD64YbD:ZRzeX0VUlQUsGSZgEsAwfbjE9dxw34D
Score

8^/10

persistence
- Sets service image path in registry
  persistence
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2 behavioral3

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3