b0a3d6118d33f6ab660853ef8ecaaf543a72f11b7fa1f5e8467d603af58bf116 | Triage

Sharing

General

Target

b0a3d6118d33f6ab660853ef8ecaaf543a72f11b7fa1f5e8467d603af58bf116
Size

104KB
Sample

240313-2bx7aada68
MD5

cfb4b3f484e7631463f0468fea017c20
SHA1

ff2f8e1a25409d8362591b03b7d1e35fcec20a94
SHA256

b0a3d6118d33f6ab660853ef8ecaaf543a72f11b7fa1f5e8467d603af58bf116
SHA512

5d45c0e89c0bf91f7f8c2f55553c2177856b7fb89346db7001d90565486793dd300c42fa9fb906380ebad418053a48fb8c3af3d339e9c4ad90d8cde3727507c2
SSDEEP

3072:d1mEfzBq37J7Onjnuw2J5e5lx7cEGrhkngpDvchkqbAIQS:d15q3V2uw2JM5lx4brq2Ahn

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  b0a3d6118d33f6ab660853ef8ecaaf543a72f11b7fa1f5e8467d603af58bf116
- Size
  
  104KB
- MD5
  
  cfb4b3f484e7631463f0468fea017c20
- SHA1
  
  ff2f8e1a25409d8362591b03b7d1e35fcec20a94
- SHA256
  
  b0a3d6118d33f6ab660853ef8ecaaf543a72f11b7fa1f5e8467d603af58bf116
- SHA512
  
  5d45c0e89c0bf91f7f8c2f55553c2177856b7fb89346db7001d90565486793dd300c42fa9fb906380ebad418053a48fb8c3af3d339e9c4ad90d8cde3727507c2
- SSDEEP
  
  3072:d1mEfzBq37J7Onjnuw2J5e5lx7cEGrhkngpDvchkqbAIQS:d15q3V2uw2JM5lx4brq2Ahn
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2