2123dad390deb2e9659fb3368fb9282dbada6805186004160e6ffb8dae0590a4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2123dad390deb2e9659fb3368fb9282dbada6805186004160e6ffb8dae0590a4N
Size

8KB
Sample

241017-z4zvgaxalf
MD5

3e5b89230c9c53c55b96d01400465720
SHA1

9f80e674d422c820eba0d22b4138fe1ce19b01a4
SHA256

2123dad390deb2e9659fb3368fb9282dbada6805186004160e6ffb8dae0590a4
SHA512

11a32a038ba2ae63212f81d752b64f58f01f783d5691b264673174b57deb972f2f57ee8144deaf404311fa1e47631f445b123715d120aec12a4f8d9cac628f2e
SSDEEP

192:Oh4SFyvWohE5xf6YUBSL63SUJqtMblWN:OO+ohE2B13NJqtM

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  2123dad390deb2e9659fb3368fb9282dbada6805186004160e6ffb8dae0590a4N
- Size
  
  8KB
- MD5
  
  3e5b89230c9c53c55b96d01400465720
- SHA1
  
  9f80e674d422c820eba0d22b4138fe1ce19b01a4
- SHA256
  
  2123dad390deb2e9659fb3368fb9282dbada6805186004160e6ffb8dae0590a4
- SHA512
  
  11a32a038ba2ae63212f81d752b64f58f01f783d5691b264673174b57deb972f2f57ee8144deaf404311fa1e47631f445b123715d120aec12a4f8d9cac628f2e
- SSDEEP
  
  192:Oh4SFyvWohE5xf6YUBSL63SUJqtMblWN:OO+ohE2B13NJqtM
Score

6^/10

discovery persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence