ba16ada6acf94a880ec988a39e614b500196f352f588910a5d05a4de4d3750f8 | Triage

Submit
Reports

Overview

overview

9

Static

static

ba16ada6ac...f8.exe

windows7-x64

9

ba16ada6ac...f8.exe

windows10-2004-x64

9

Sharing

General

Target

ba16ada6acf94a880ec988a39e614b500196f352f588910a5d05a4de4d3750f8
Size

5.2MB
Sample

221123-z4x1waee28
MD5

56ac386bad012746c76dde506bb664aa
SHA1

4a9c1e46644c3d3a2304d9abf48e1832f5e70953
SHA256

ba16ada6acf94a880ec988a39e614b500196f352f588910a5d05a4de4d3750f8
SHA512

2e93d12959ef2b3622afca1d63bfd28719ced5be5c7cac7477b72e08cfe056b62ff785c8518375479553983b723e1b2af6826d6ec8e28033979acd0fe00d963e
SSDEEP

98304:ik31h3708LQ0tuXd4lVPSMTP8BOAMfnLe+BNXcJFI4AbR3Ru0+O0s0v02Do6kQgq:xDJ5SKKOAMfLDBNXqFjUF0tBd3

Score

9^/10

persistence

Static task

static1

Behavioral task

behavioral1

Sample

ba16ada6acf94a880ec988a39e614b500196f352f588910a5d05a4de4d3750f8.exe

Resource

win7-20221111-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

ba16ada6acf94a880ec988a39e614b500196f352f588910a5d05a4de4d3750f8.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  ba16ada6acf94a880ec988a39e614b500196f352f588910a5d05a4de4d3750f8
- Size
  
  5.2MB
- MD5
  
  56ac386bad012746c76dde506bb664aa
- SHA1
  
  4a9c1e46644c3d3a2304d9abf48e1832f5e70953
- SHA256
  
  ba16ada6acf94a880ec988a39e614b500196f352f588910a5d05a4de4d3750f8
- SHA512
  
  2e93d12959ef2b3622afca1d63bfd28719ced5be5c7cac7477b72e08cfe056b62ff785c8518375479553983b723e1b2af6826d6ec8e28033979acd0fe00d963e
- SSDEEP
  
  98304:ik31h3708LQ0tuXd4lVPSMTP8BOAMfnLe+BNXcJFI4AbR3Ru0+O0s0v02Do6kQgq:xDJ5SKKOAMfLDBNXqFjUF0tBd3
Score

9^/10

persistence
- ACProtect 1.3x - 1.4x DLL software
  Detects file using ACProtect software.
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy