07edea1e6b0a32a82ed3f4252dd0889cbe3fe0dd62cd0355ebf449245f76bc08 | Triage

Sharing

General

Target

dkv-2022.EXE
Size

395KB
Sample

240824-vf4ras1hmj
MD5

12b5a0dd8f728533f826f66a7a6e9b54
SHA1

cfe93c33c043b37a644f536f25bb74a2b2e725c8
SHA256

07edea1e6b0a32a82ed3f4252dd0889cbe3fe0dd62cd0355ebf449245f76bc08
SHA512

598301c78d213c647f16e7f39bae34be698225fe5394be419f348143889d4f5e8d01823bd70ecd2a9462412e5e171e70df28d36ca77c2159e5582b7335c0799e
SSDEEP

3072:X0q7pTAD2IR9wQSJw+OPZ4/W02RtjjmHnqE88xjGt/OJLohIG83GTo4/JazLdrKX:Eq7YYQCOVvNlYJEPdT1azLdGfqCWIN

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  dkv-2022.EXE
- Size
  
  395KB
- MD5
  
  12b5a0dd8f728533f826f66a7a6e9b54
- SHA1
  
  cfe93c33c043b37a644f536f25bb74a2b2e725c8
- SHA256
  
  07edea1e6b0a32a82ed3f4252dd0889cbe3fe0dd62cd0355ebf449245f76bc08
- SHA512
  
  598301c78d213c647f16e7f39bae34be698225fe5394be419f348143889d4f5e8d01823bd70ecd2a9462412e5e171e70df28d36ca77c2159e5582b7335c0799e
- SSDEEP
  
  3072:X0q7pTAD2IR9wQSJw+OPZ4/W02RtjjmHnqE88xjGt/OJLohIG83GTo4/JazLdrKX:Eq7YYQCOVvNlYJEPdT1azLdGfqCWIN
Score

7^/10

persistence
- Deletes itself
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2