9738f1fbd04a2907c9eeb7e8605bebec1a58610ad5b01954a6562e18c33b6c57 | Triage

Sharing

General

Target

80b23ef03554ddf1408a66d0367ab7b0N
Size

520KB
Sample

240908-pgntksvhmp
MD5

80b23ef03554ddf1408a66d0367ab7b0
SHA1

43ff79e2dbf48761c9a6c8f984e9e670cdf7c912
SHA256

9738f1fbd04a2907c9eeb7e8605bebec1a58610ad5b01954a6562e18c33b6c57
SHA512

e129f133b5088329c30c1c4f9b6b452a192ddd9d34606e536fd50b78a8834b874c1f7eefa8469039b3dcaeca45cab30d581ad9d6fc95b66a49623c0558de7a24
SSDEEP

6144:rqppuGRYx4H712f/SBTpzZA6rXD40b+7TJACRNpnZtfeQIROl9as+660obyWcEKJ:rqpNtb1YIp9AI4FA+pnh

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  80b23ef03554ddf1408a66d0367ab7b0N
- Size
  
  520KB
- MD5
  
  80b23ef03554ddf1408a66d0367ab7b0
- SHA1
  
  43ff79e2dbf48761c9a6c8f984e9e670cdf7c912
- SHA256
  
  9738f1fbd04a2907c9eeb7e8605bebec1a58610ad5b01954a6562e18c33b6c57
- SHA512
  
  e129f133b5088329c30c1c4f9b6b452a192ddd9d34606e536fd50b78a8834b874c1f7eefa8469039b3dcaeca45cab30d581ad9d6fc95b66a49623c0558de7a24
- SSDEEP
  
  6144:rqppuGRYx4H712f/SBTpzZA6rXD40b+7TJACRNpnZtfeQIROl9as+660obyWcEKJ:rqpNtb1YIp9AI4FA+pnh
Score

7^/10

discovery persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence