3a8f3c49e2d07c7b347132373ad4388efadd54a2531fd037d0c1dc910290e516 | Triage

Sharing

General

Target

2068da550467693eb2a0c84c18ea5e90.bin
Size

176KB
Sample

231118-bq6tvsgd97
MD5

2068da550467693eb2a0c84c18ea5e90
SHA1

1dccf7be1b439a758244ed4df698ddbcb2029130
SHA256

3a8f3c49e2d07c7b347132373ad4388efadd54a2531fd037d0c1dc910290e516
SHA512

ac512ac27335f948576117aab4058332ae79a28e6765011bd33e545703a6e2fb82a94ed4719ed792ddd978a89370ee7fe1c39b9dead5ece8493134808ce1d856
SSDEEP

3072:YWSFmUx+tA7pFTmAkYm6RBrl4DeRUEdmjRrz3TIUV4BKxAcL5CY2VePIV:VlGgA7DBkjUKqmEdGTBki5CYtIV

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  2068da550467693eb2a0c84c18ea5e90.bin
- Size
  
  176KB
- MD5
  
  2068da550467693eb2a0c84c18ea5e90
- SHA1
  
  1dccf7be1b439a758244ed4df698ddbcb2029130
- SHA256
  
  3a8f3c49e2d07c7b347132373ad4388efadd54a2531fd037d0c1dc910290e516
- SHA512
  
  ac512ac27335f948576117aab4058332ae79a28e6765011bd33e545703a6e2fb82a94ed4719ed792ddd978a89370ee7fe1c39b9dead5ece8493134808ce1d856
- SSDEEP
  
  3072:YWSFmUx+tA7pFTmAkYm6RBrl4DeRUEdmjRrz3TIUV4BKxAcL5CY2VePIV:VlGgA7DBkjUKqmEdGTBki5CYtIV
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2