381c52c11fa5c544f56e6884dad605dbc21ca02188091983a04f8596f982083e | Triage

Sharing

General

Target

381c52c11fa5c544f56e6884dad605dbc21ca02188091983a04f8596f982083e
Size

168KB
Sample

240903-k474hstfkc
MD5

ee8672e86b1c116323cdd368f15e6778
SHA1

d91f5cb9b6f396821a05e94d5aff879ea2eabeb0
SHA256

381c52c11fa5c544f56e6884dad605dbc21ca02188091983a04f8596f982083e
SHA512

d201d71c78ee0199b5b5a133166b360d1aad9909aa8d66c5b48cd99cb9974c5ed6ec93acdec1b01d5cf919ca0b90e67d9d70ad32ee0bb1f1f3c88e5e14b72f9a
SSDEEP

3072:jed7SH8YIyl8QacKWKxJkTTonsFuNW/Qhixf1t:j4yfacQ2GIoh

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  381c52c11fa5c544f56e6884dad605dbc21ca02188091983a04f8596f982083e
- Size
  
  168KB
- MD5
  
  ee8672e86b1c116323cdd368f15e6778
- SHA1
  
  d91f5cb9b6f396821a05e94d5aff879ea2eabeb0
- SHA256
  
  381c52c11fa5c544f56e6884dad605dbc21ca02188091983a04f8596f982083e
- SHA512
  
  d201d71c78ee0199b5b5a133166b360d1aad9909aa8d66c5b48cd99cb9974c5ed6ec93acdec1b01d5cf919ca0b90e67d9d70ad32ee0bb1f1f3c88e5e14b72f9a
- SSDEEP
  
  3072:jed7SH8YIyl8QacKWKxJkTTonsFuNW/Qhixf1t:j4yfacQ2GIoh
Score

8^/10

persistence
- Sets service image path in registry
  persistence
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2