bf876729a9e810df585bc43ee836461115c7b8df423445b1448ca77cbb695432 | Triage

Sharing

General

Target

bf876729a9e810df585bc43ee836461115c7b8df423445b1448ca77cbb695432
Size

50KB
Sample

221126-kxcn2afe79
MD5

abc07b749c0dc22e92c4a4da127d0ea0
SHA1

764e7e1026456f42147a262dddece5f58520f2db
SHA256

bf876729a9e810df585bc43ee836461115c7b8df423445b1448ca77cbb695432
SHA512

04f327ef0cffc169ebae3098949b2c4f3c444eb4ac8f1b69404824028690d3525036ae9ca9d8a6a938f92efb6287dd43187f75f97a9dc79fbfb87f3a5cad3aad
SSDEEP

1536:XwCQ0+t/hk8OmNsQHgIBLM1IsCFQ4AMRAmQb:gC0t/hk8OmNPdMSsynAGm

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  bf876729a9e810df585bc43ee836461115c7b8df423445b1448ca77cbb695432
- Size
  
  50KB
- MD5
  
  abc07b749c0dc22e92c4a4da127d0ea0
- SHA1
  
  764e7e1026456f42147a262dddece5f58520f2db
- SHA256
  
  bf876729a9e810df585bc43ee836461115c7b8df423445b1448ca77cbb695432
- SHA512
  
  04f327ef0cffc169ebae3098949b2c4f3c444eb4ac8f1b69404824028690d3525036ae9ca9d8a6a938f92efb6287dd43187f75f97a9dc79fbfb87f3a5cad3aad
- SSDEEP
  
  1536:XwCQ0+t/hk8OmNsQHgIBLM1IsCFQ4AMRAmQb:gC0t/hk8OmNPdMSsynAGm
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2