61169b810362b8f36e3d7c32eab7d40712ccc1d7e08bab80b6fe5ab2d155aee8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

61169b810362b8f36e3d7c32eab7d40712ccc1d7e08bab80b6fe5ab2d155aee8
Size

2.7MB
Sample

240928-2ajmha1gqb
MD5

56ebfc3b1ebaf6f527c0482f7b839e29
SHA1

a47078d6effb670c91235b333ad7fc33832861c0
SHA256

61169b810362b8f36e3d7c32eab7d40712ccc1d7e08bab80b6fe5ab2d155aee8
SHA512

787ab697a91206b51c655fea91dd17bc39b87aca506d0e9a40f4eb717ff60ce9b275901d2f0970c262a7a8cadbe3abd0859423a0f281682347ff96b2f2e84b89
SSDEEP

49152:+R0p8xHycIq+GI27nGroMPTJPer1c2HSjpjK3LBB9w4S+:+R0pI/IQlUoMPdmpSpF4X

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  61169b810362b8f36e3d7c32eab7d40712ccc1d7e08bab80b6fe5ab2d155aee8
- Size
  
  2.7MB
- MD5
  
  56ebfc3b1ebaf6f527c0482f7b839e29
- SHA1
  
  a47078d6effb670c91235b333ad7fc33832861c0
- SHA256
  
  61169b810362b8f36e3d7c32eab7d40712ccc1d7e08bab80b6fe5ab2d155aee8
- SHA512
  
  787ab697a91206b51c655fea91dd17bc39b87aca506d0e9a40f4eb717ff60ce9b275901d2f0970c262a7a8cadbe3abd0859423a0f281682347ff96b2f2e84b89
- SSDEEP
  
  49152:+R0p8xHycIq+GI27nGroMPTJPer1c2HSjpjK3LBB9w4S+:+R0pI/IQlUoMPdmpSpF4X
Score

7^/10

discovery persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence