bfb7e51b999065d5d5a2aa5182a7c972a7ae79b02cacfe804e4b74425d1e468a | Triage

Sharing

General

Target

bfb7e51b999065d5d5a2aa5182a7c972a7ae79b02cacfe804e4b74425d1e468a
Size

88KB
Sample

221029-xht1zsbdcr
MD5

40c7a4b7c14b946aec6e0c815eb60ee2
SHA1

2465effe7184d232a2e9e2949affb08db7277287
SHA256

bfb7e51b999065d5d5a2aa5182a7c972a7ae79b02cacfe804e4b74425d1e468a
SHA512

e7b294cc2a98fe21919114b6e5f6086ee8420a198769e316a97f8e118ffc3e54afc36893cc96ae7e7dd4dc8bba8fe3dd8c0fa4e1ca29f3e8d9a2f8ea564c9664
SSDEEP

1536:tvx/9lsKk1439u3GM83y53cu3Ym3t23weYwvN8QbB38Uo07UdZyHQoUlsqD0916Q:9x0Kk1wcZUOnrETYw18QbB38Uo07UdZa

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  bfb7e51b999065d5d5a2aa5182a7c972a7ae79b02cacfe804e4b74425d1e468a
- Size
  
  88KB
- MD5
  
  40c7a4b7c14b946aec6e0c815eb60ee2
- SHA1
  
  2465effe7184d232a2e9e2949affb08db7277287
- SHA256
  
  bfb7e51b999065d5d5a2aa5182a7c972a7ae79b02cacfe804e4b74425d1e468a
- SHA512
  
  e7b294cc2a98fe21919114b6e5f6086ee8420a198769e316a97f8e118ffc3e54afc36893cc96ae7e7dd4dc8bba8fe3dd8c0fa4e1ca29f3e8d9a2f8ea564c9664
- SSDEEP
  
  1536:tvx/9lsKk1439u3GM83y53cu3Ym3t23weYwvN8QbB38Uo07UdZyHQoUlsqD0916Q:9x0Kk1wcZUOnrETYw18QbB38Uo07UdZa
Score

8^/10

persistence
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2