b85e8a6f3e31a2988e9200af80896fd11116c15cbe9dafb61476f7912be50176 | Triage

Sharing

General

Target

b85e8a6f3e31a2988e9200af80896fd11116c15cbe9dafb61476f7912be50176
Size

96KB
Sample

240405-anag7sfd22
MD5

3e35a1b7ad8c7049b4ad78d1d605f002
SHA1

6740bd7cf350058ed379b3be93b87bcd597a33cc
SHA256

b85e8a6f3e31a2988e9200af80896fd11116c15cbe9dafb61476f7912be50176
SHA512

dfc9dd97a02447288ada5ca3fd3bf60b1edd34cb4f40a9b6effd152ae283382deea2af212b25d169971dfaf545b7fa155ec7bdbeb704177bd62f615fff2fd0d6
SSDEEP

1536:n07dYvKsN3Qrht7kwhdKQoO3oakjVKph7TaFvGHfVupAGCduV9jojTIvjrH:n07dxu3UhZHkhEZuFvOVr1d69jc0vf

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  b85e8a6f3e31a2988e9200af80896fd11116c15cbe9dafb61476f7912be50176
- Size
  
  96KB
- MD5
  
  3e35a1b7ad8c7049b4ad78d1d605f002
- SHA1
  
  6740bd7cf350058ed379b3be93b87bcd597a33cc
- SHA256
  
  b85e8a6f3e31a2988e9200af80896fd11116c15cbe9dafb61476f7912be50176
- SHA512
  
  dfc9dd97a02447288ada5ca3fd3bf60b1edd34cb4f40a9b6effd152ae283382deea2af212b25d169971dfaf545b7fa155ec7bdbeb704177bd62f615fff2fd0d6
- SSDEEP
  
  1536:n07dYvKsN3Qrht7kwhdKQoO3oakjVKph7TaFvGHfVupAGCduV9jojTIvjrH:n07dxu3UhZHkhEZuFvOVr1d69jc0vf
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2