b2f287374ff05ac18ac45b373fc68fd4dac4acf3d97241b76927f3f51b0c43b6 | Triage

Sharing

General

Target

b2f287374ff05ac18ac45b373fc68fd4dac4acf3d97241b76927f3f51b0c43b6
Size

50KB
Sample

221126-k1fj4aaf9x
MD5

0bbe2999f0dd4b97077c6a03fa7bf850
SHA1

b81e3b6e345a2f26e6427a6fdcb5b55c3322b1fb
SHA256

b2f287374ff05ac18ac45b373fc68fd4dac4acf3d97241b76927f3f51b0c43b6
SHA512

cf041c9a39f9fcf43bc6efcd870748210b61e1a2c04eda5061ae5fda4aa0d92423a7344256269c65d86924f4eb1a5abb469d6c2cbf914d66a10b1f0b516b5ef2
SSDEEP

768:o0C7QMzGHEWs008UpiF0JPIBUlQD2+CfsRr3CMZ6x+lRkp5mGmlB5OACvHVr/1H2:ojdz0sWUh+UGBCsCM08B5OHvHV5

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  b2f287374ff05ac18ac45b373fc68fd4dac4acf3d97241b76927f3f51b0c43b6
- Size
  
  50KB
- MD5
  
  0bbe2999f0dd4b97077c6a03fa7bf850
- SHA1
  
  b81e3b6e345a2f26e6427a6fdcb5b55c3322b1fb
- SHA256
  
  b2f287374ff05ac18ac45b373fc68fd4dac4acf3d97241b76927f3f51b0c43b6
- SHA512
  
  cf041c9a39f9fcf43bc6efcd870748210b61e1a2c04eda5061ae5fda4aa0d92423a7344256269c65d86924f4eb1a5abb469d6c2cbf914d66a10b1f0b516b5ef2
- SSDEEP
  
  768:o0C7QMzGHEWs008UpiF0JPIBUlQD2+CfsRr3CMZ6x+lRkp5mGmlB5OACvHVr/1H2:ojdz0sWUh+UGBCsCM08B5OHvHV5
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2