2bb4e435ba09ceab83ae6a237d075ed18bdcd2cdf3e3898e11906d4fad8c3073 | Triage

Sharing

General

Target

2bb4e435ba09ceab83ae6a237d075ed18bdcd2cdf3e3898e11906d4fad8c3073
Size

352KB
Sample

240314-w1lxnabd2y
MD5

22bb8c2daf89414708ee2f0ece9f822a
SHA1

bc273ae773fa4e166c820302348d914881268d7a
SHA256

2bb4e435ba09ceab83ae6a237d075ed18bdcd2cdf3e3898e11906d4fad8c3073
SHA512

ae0341acc5ee24b511206d97ffe7f3db192030a680bcb8eaa797710fa2f73e21f40638a23de6a59a51c87e688218b2d7cb00509ad8fc8264d1637be5c6106497
SSDEEP

6144:45EplM0lwdMoB3Yt3XbaHJUByvZ6Mxv5Rar3O6B9fZSLhZmzbByvZ6Mxv5R:0Epm0y6t3XGCByvNv54B9f01ZmHByvNR

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  2bb4e435ba09ceab83ae6a237d075ed18bdcd2cdf3e3898e11906d4fad8c3073
- Size
  
  352KB
- MD5
  
  22bb8c2daf89414708ee2f0ece9f822a
- SHA1
  
  bc273ae773fa4e166c820302348d914881268d7a
- SHA256
  
  2bb4e435ba09ceab83ae6a237d075ed18bdcd2cdf3e3898e11906d4fad8c3073
- SHA512
  
  ae0341acc5ee24b511206d97ffe7f3db192030a680bcb8eaa797710fa2f73e21f40638a23de6a59a51c87e688218b2d7cb00509ad8fc8264d1637be5c6106497
- SSDEEP
  
  6144:45EplM0lwdMoB3Yt3XbaHJUByvZ6Mxv5Rar3O6B9fZSLhZmzbByvZ6Mxv5R:0Epm0y6t3XGCByvNv54B9f01ZmHByvNR
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2