b461fd7bef412965913c89672a15ae8e1cec3ecfe52d7f3f074156a3a23f2464 | Triage

Sharing

General

Target

b461fd7bef412965913c89672a15ae8e1cec3ecfe52d7f3f074156a3a23f2464
Size

56KB
Sample

221125-ljtwtsbg6y
MD5

dc0b1b232b2c594cc5d41fb362875281
SHA1

89e5c7ca66415d79c153684fd76cb3b2f721c2bb
SHA256

b461fd7bef412965913c89672a15ae8e1cec3ecfe52d7f3f074156a3a23f2464
SHA512

52d50d9791d829463f4e7c910565c78b4d00c8491234b1b6b988238c38bdbc3304cc63d2ec30aefd1dc167d11e28791f9e3ebb2102da28004b9baa951559e975
SSDEEP

1536:hjGGBFId/9zA8lcYMsBLn7qTCzZ2bi1lovlPp:hJFIfiYrBrutbiYvlh

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  b461fd7bef412965913c89672a15ae8e1cec3ecfe52d7f3f074156a3a23f2464
- Size
  
  56KB
- MD5
  
  dc0b1b232b2c594cc5d41fb362875281
- SHA1
  
  89e5c7ca66415d79c153684fd76cb3b2f721c2bb
- SHA256
  
  b461fd7bef412965913c89672a15ae8e1cec3ecfe52d7f3f074156a3a23f2464
- SHA512
  
  52d50d9791d829463f4e7c910565c78b4d00c8491234b1b6b988238c38bdbc3304cc63d2ec30aefd1dc167d11e28791f9e3ebb2102da28004b9baa951559e975
- SSDEEP
  
  1536:hjGGBFId/9zA8lcYMsBLn7qTCzZ2bi1lovlPp:hJFIfiYrBrutbiYvlh
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2