0bf7fea449dabf1d3778c76b1f7baa94d99d0ce6f5e8889d8ee917c34c850727 | Triage

Sharing

General

Target

0bf7fea449dabf1d3778c76b1f7baa94d99d0ce6f5e8889d8ee917c34c850727
Size

110KB
Sample

240319-ewxpxshb76
MD5

0eb8de8ae0fbd22ac2ac8db48e6c5bf0
SHA1

ba2e980ba8d685f13fbcb5dd69cf5ca6524c918f
SHA256

0bf7fea449dabf1d3778c76b1f7baa94d99d0ce6f5e8889d8ee917c34c850727
SHA512

072aea56726f1a1531e467d180ba97e7692aec2c49d809f253dbe9068cd0523bd846eb92e62a60f4296a6658712d33a0dd028f50f97b492ee450595ea05af3bc
SSDEEP

3072:JPGVKqFt8FED0vllz2aWqdDg8oxjVfvl7:1nqFtX0vllYqfoxjVfvl7

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  0bf7fea449dabf1d3778c76b1f7baa94d99d0ce6f5e8889d8ee917c34c850727
- Size
  
  110KB
- MD5
  
  0eb8de8ae0fbd22ac2ac8db48e6c5bf0
- SHA1
  
  ba2e980ba8d685f13fbcb5dd69cf5ca6524c918f
- SHA256
  
  0bf7fea449dabf1d3778c76b1f7baa94d99d0ce6f5e8889d8ee917c34c850727
- SHA512
  
  072aea56726f1a1531e467d180ba97e7692aec2c49d809f253dbe9068cd0523bd846eb92e62a60f4296a6658712d33a0dd028f50f97b492ee450595ea05af3bc
- SSDEEP
  
  3072:JPGVKqFt8FED0vllz2aWqdDg8oxjVfvl7:1nqFtX0vllYqfoxjVfvl7
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2