153ea1be641c0baad4fc0bbe4d330099f9de49f76b14c4f3d0be2a1cba463807 | Triage

Resubmissions

14-10-2024 16:21

241014-ttqwxstgke 8

14-10-2024 16:20

241014-ts814sxhrp 8

Sharing

General

Target

Virus!!!.zip
Size

297KB
Sample

241014-ttqwxstgke
MD5

3752b1b490aed978d23cce4c21124d61
SHA1

b2fce1efc51a6ee9dc32f55064ccaf7156ec4f86
SHA256

153ea1be641c0baad4fc0bbe4d330099f9de49f76b14c4f3d0be2a1cba463807
SHA512

b54cc39275f08c182c12b7ef8904e788b07682206676a16bc5c0d1ab3950bb189839accdd84e87c69f308b9059a65433a7c579ddbd732ee1ab3c68049a13195f
SSDEEP

6144:ZlZRxvN8pwGXEM9Iu6sXxkaAWDZIPgOn9qE+1zOzkI8c3ZNvVstJ95L2D:bZRxv+pwy9WjsXqaAmZwn9wVRJgzvVs+

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  PolygonHack.exe
- Size
  
  608KB
- MD5
  
  bf0ec485993699b0fb08eb592a8d0733
- SHA1
  
  1a98c2bcf2e004314875e837901f0eab193f891f
- SHA256
  
  8786ad7da8135e2361cb1b77f9320b9fb7de843b90a13fb6351b95430c041b46
- SHA512
  
  e90eba6344888671984b423faefc6617114fd2e40dcd3817a1be6799f3d86f5300ee7ded41f861f6d40ed43570a79e0f662f3786c65e351e87c1f31f4606ddb2
- SSDEEP
  
  12288:SIaiY60+66oorf0zGdn6rTnFM50QnTsv7WR:SIar60+6ZzGdn6rTn2vTc7WR
Score

8^/10

persistence
- Sets service image path in registry
  persistence
- Executes dropped EXE
behavioral1 behavioral2
- Target
  
  driver.sys
- Size
  
  26KB
- MD5
  
  b0489d1f39358055c5962aeccd3a0b62
- SHA1
  
  b2fdf14df2f4d3bb67acbda8be7ef53287f39e66
- SHA256
  
  46411422e7daece32f7581d8b3c5f282e8d92c6bb2c98ccf80960b85a240f2bc
- SHA512
  
  d22aa65c927d7854424343e09b5bf0adb52c6c32c8b7224635fc1c293baf7b2d11ab867590a6bf3d686b3981be06a51788fe916afc6f91baea4b158bfde14267
- SSDEEP
  
  384:rJrOiD45N64lKdTZ9AZsHLkt74i/8E9VFcyMZ9AZsHLIrH4i/8E9VFidN/:ZAYvHw7eE5qHQeEEb
Score

1^/10
behavioral3 behavioral4

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4