6f96eba6cfdf82d5ff40441132ccd54eb6da59c433778a87cfbd29d993477912 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6f96eba6cfdf82d5ff40441132ccd54eb6da59c433778a87cfbd29d993477912
Size

259KB
Sample

240408-15xl6sgg3w
MD5

10a7be33f657b92acacaa12a2892bdf1
SHA1

e98513f7c74548a3ee53e2173b5adfa8dafaca23
SHA256

6f96eba6cfdf82d5ff40441132ccd54eb6da59c433778a87cfbd29d993477912
SHA512

3857b63a7445c56e399fd9d54d27ef3c76e0d57fc17adfebfe88e524bb3b1a653c7b70490000fff567855301a9563f45cffe03b5564c4aa04b0140cd0b8fccd3
SSDEEP

6144:XgJ2ZAAkqnANv494D83pJKfSWPOw7EMHHEMH:QJ2ZAAkkANv494D83pkcMEM

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  6f96eba6cfdf82d5ff40441132ccd54eb6da59c433778a87cfbd29d993477912
- Size
  
  259KB
- MD5
  
  10a7be33f657b92acacaa12a2892bdf1
- SHA1
  
  e98513f7c74548a3ee53e2173b5adfa8dafaca23
- SHA256
  
  6f96eba6cfdf82d5ff40441132ccd54eb6da59c433778a87cfbd29d993477912
- SHA512
  
  3857b63a7445c56e399fd9d54d27ef3c76e0d57fc17adfebfe88e524bb3b1a653c7b70490000fff567855301a9563f45cffe03b5564c4aa04b0140cd0b8fccd3
- SSDEEP
  
  6144:XgJ2ZAAkqnANv494D83pJKfSWPOw7EMHHEMH:QJ2ZAAkkANv494D83pkcMEM
Score

7^/10

persistence
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2