e807f820cfe3ea670af3b8994a31f4521cd64c0eedaaf11e96ccef100f741f2b | Triage

Sharing

General

Target

spoofer_new.exe
Size

608KB
Sample

240712-y94vyayfmp
MD5

d095341534fddce28871264bed02bbf3
SHA1

880e3ac5a5b50fb3013373dec1df80ce3ce6c59b
SHA256

e807f820cfe3ea670af3b8994a31f4521cd64c0eedaaf11e96ccef100f741f2b
SHA512

a0fff06ae0ec3f097e7e4786df2ca7def1304f1a2e720fb994458b5a3e443e60b532866345a3b4f995a7834332174cd3711deb76f118db8e987a30fd76134910
SSDEEP

6144:F/KWCA3vyU4yMyCvSLPZvrIFQdGaWlMFYCAhh:F/KWH3BXLxvFdGnqFYC

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  spoofer_new.exe
- Size
  
  608KB
- MD5
  
  d095341534fddce28871264bed02bbf3
- SHA1
  
  880e3ac5a5b50fb3013373dec1df80ce3ce6c59b
- SHA256
  
  e807f820cfe3ea670af3b8994a31f4521cd64c0eedaaf11e96ccef100f741f2b
- SHA512
  
  a0fff06ae0ec3f097e7e4786df2ca7def1304f1a2e720fb994458b5a3e443e60b532866345a3b4f995a7834332174cd3711deb76f118db8e987a30fd76134910
- SSDEEP
  
  6144:F/KWCA3vyU4yMyCvSLPZvrIFQdGaWlMFYCAhh:F/KWH3BXLxvFdGnqFYC
Score

8^/10

persistence
- Sets service image path in registry
  persistence
- Executes dropped EXE
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1