bff1a5d581474661897ba4504cd7211ff44696c4c7bee00ba32ee6e70ede5e48 | Triage

Sharing

General

Target

bff1a5d581474661897ba4504cd7211ff44696c4c7bee00ba32ee6e70ede5e48
Size

436KB
Sample

221123-s8exjagd3y
MD5

2d4895942e3b0ad9066271fff11b2aec
SHA1

41c5be8f367af7c7532b9e7ddd4668cf9edd7bb4
SHA256

bff1a5d581474661897ba4504cd7211ff44696c4c7bee00ba32ee6e70ede5e48
SHA512

c67768a7876d313e2617fc63bd1568a7cc713ef3d446ea49358e2be09f1b2b018f736891a98b1059574789cb0d1889ec48fdfddec11ec15e42f4058e9cd73ed3
SSDEEP

6144:4p05B8sjfbdkPycgHhaDsCZpC/o/SYax6zxzV:9XTjfbdaycDlZ2Xxo

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  bff1a5d581474661897ba4504cd7211ff44696c4c7bee00ba32ee6e70ede5e48
- Size
  
  436KB
- MD5
  
  2d4895942e3b0ad9066271fff11b2aec
- SHA1
  
  41c5be8f367af7c7532b9e7ddd4668cf9edd7bb4
- SHA256
  
  bff1a5d581474661897ba4504cd7211ff44696c4c7bee00ba32ee6e70ede5e48
- SHA512
  
  c67768a7876d313e2617fc63bd1568a7cc713ef3d446ea49358e2be09f1b2b018f736891a98b1059574789cb0d1889ec48fdfddec11ec15e42f4058e9cd73ed3
- SSDEEP
  
  6144:4p05B8sjfbdkPycgHhaDsCZpC/o/SYax6zxzV:9XTjfbdaycDlZ2Xxo
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2