bdbb692efdb960e8adaae93b2c1c6af6732afab4b5cbdd4ba6c94a9d74129651 | Triage

Sharing

General

Target

bdbb692efdb960e8adaae93b2c1c6af6732afab4b5cbdd4ba6c94a9d74129651
Size

67KB
Sample

220919-lketasafh7
MD5

b7e5d97a60fec2db9a30bfb46dca307d
SHA1

c8d9578aca4a4bb528eb8280ae64df5c4b3408ce
SHA256

bdbb692efdb960e8adaae93b2c1c6af6732afab4b5cbdd4ba6c94a9d74129651
SHA512

ee98d4c74c1a6384f7b08692958fd6285834ba5693635106da407751af309263924217320138e84363b1747ededa33f97bdb4330824beb19661a20bf8e781f81
SSDEEP

1536:nn8YjGFzGwPwTFgc0GKf6xzpGG6vKRgau2Cnd3YehTuXAxUva:nnDjXwPwZFLxzp9u5nZYBAxCa

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  bdbb692efdb960e8adaae93b2c1c6af6732afab4b5cbdd4ba6c94a9d74129651
- Size
  
  67KB
- MD5
  
  b7e5d97a60fec2db9a30bfb46dca307d
- SHA1
  
  c8d9578aca4a4bb528eb8280ae64df5c4b3408ce
- SHA256
  
  bdbb692efdb960e8adaae93b2c1c6af6732afab4b5cbdd4ba6c94a9d74129651
- SHA512
  
  ee98d4c74c1a6384f7b08692958fd6285834ba5693635106da407751af309263924217320138e84363b1747ededa33f97bdb4330824beb19661a20bf8e781f81
- SSDEEP
  
  1536:nn8YjGFzGwPwTFgc0GKf6xzpGG6vKRgau2Cnd3YehTuXAxUva:nnDjXwPwZFLxzp9u5nZYBAxCa
Score

8^/10

persistence
- Executes dropped EXE
- Sets DLL path for service in the registry
  persistence
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2