bfca7b30847a59dc6669e837e58a7ae1414b37c457f2587ab0274d1c8be81d76 | Triage

Sharing

General

Target

bfca7b30847a59dc6669e837e58a7ae1414b37c457f2587ab0274d1c8be81d76
Size

295KB
Sample

240405-axxn4aeh7z
MD5

0b878f012719697340c7d4966a81546c
SHA1

9293baa9dea3c7b60568325c3d076b8bc4c0c89f
SHA256

bfca7b30847a59dc6669e837e58a7ae1414b37c457f2587ab0274d1c8be81d76
SHA512

33d6984a8ac1dfbc2a31a8e293f57124a725c98fbb8a2cd0b68e52c8e973eb60182c98793191d4a0e4dddf819290dd098e5e32d6f158d76e75317b518cbfd62d
SSDEEP

3072:6wgqiyO/awaWCm62jyOaWCeqmSu62i+KGyOaWCeqmSu62i+KGyOaWCeqmSu6+K1h:6XtjJtrWXrpiCo+BTPB

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  bfca7b30847a59dc6669e837e58a7ae1414b37c457f2587ab0274d1c8be81d76
- Size
  
  295KB
- MD5
  
  0b878f012719697340c7d4966a81546c
- SHA1
  
  9293baa9dea3c7b60568325c3d076b8bc4c0c89f
- SHA256
  
  bfca7b30847a59dc6669e837e58a7ae1414b37c457f2587ab0274d1c8be81d76
- SHA512
  
  33d6984a8ac1dfbc2a31a8e293f57124a725c98fbb8a2cd0b68e52c8e973eb60182c98793191d4a0e4dddf819290dd098e5e32d6f158d76e75317b518cbfd62d
- SSDEEP
  
  3072:6wgqiyO/awaWCm62jyOaWCeqmSu62i+KGyOaWCeqmSu62i+KGyOaWCeqmSu6+K1h:6XtjJtrWXrpiCo+BTPB
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2