bcac8096edb170b9aca1fd759a0ea2e8666815832e6dbeeff3a95ce3dafbe403 | Triage

Sharing

General

Target

bcac8096edb170b9aca1fd759a0ea2e8666815832e6dbeeff3a95ce3dafbe403
Size

1.3MB
Sample

221206-tmpehsfg7x
MD5

718d025d6d5acfd8d79ce1aab8867ca1
SHA1

f643592f09ba18a069251c15ee9cd58d0b06c8a9
SHA256

bcac8096edb170b9aca1fd759a0ea2e8666815832e6dbeeff3a95ce3dafbe403
SHA512

7e2af3de5e8bb2c18a3d4f0029a0c77a124e4bb73d3ec3a1232627955102af9ac86adf2f0ede92b2c66c5bccf10189f0e85f13df153ba2c629599e4c2fb12b63
SSDEEP

24576:4jHTGAgItSObli5bRJzLxUKJKQFxAEE+a+PhsxjqfNT9Jn2IEtKq5l6/G13Op3pW:8TzMGlUbRhtYgx++zh2qfJH1+poOXZ

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  bcac8096edb170b9aca1fd759a0ea2e8666815832e6dbeeff3a95ce3dafbe403
- Size
  
  1.3MB
- MD5
  
  718d025d6d5acfd8d79ce1aab8867ca1
- SHA1
  
  f643592f09ba18a069251c15ee9cd58d0b06c8a9
- SHA256
  
  bcac8096edb170b9aca1fd759a0ea2e8666815832e6dbeeff3a95ce3dafbe403
- SHA512
  
  7e2af3de5e8bb2c18a3d4f0029a0c77a124e4bb73d3ec3a1232627955102af9ac86adf2f0ede92b2c66c5bccf10189f0e85f13df153ba2c629599e4c2fb12b63
- SSDEEP
  
  24576:4jHTGAgItSObli5bRJzLxUKJKQFxAEE+a+PhsxjqfNT9Jn2IEtKq5l6/G13Op3pW:8TzMGlUbRhtYgx++zh2qfJH1+poOXZ
Score

8^/10

persistence
- Uses Session Manager for persistence
  Creates Session Manager registry key to run executable early in system boot.
  persistence
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2