6a437c4ce6ed44d3f5fae851da17069b2b0bdcb156a8b3af6b1b720529b7b05d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6ffd4e839d20993f49694b0e36dfc562
Size

63KB
Sample

240409-yh35bsbg4t
MD5

6ffd4e839d20993f49694b0e36dfc562
SHA1

dab880cd8f692417e867c39de88ce0bb031d7199
SHA256

6a437c4ce6ed44d3f5fae851da17069b2b0bdcb156a8b3af6b1b720529b7b05d
SHA512

a3a0a1f9b952835d6d1491b6c54702bd219a05e67ab06a225d9e9f3735266247260dea13c064eaf1a653e4e5c7c0122eaf0f81b22d20926546761b5fcda3e81e
SSDEEP

1536:rf+p75jENzWB451NUQJ5gHEqpXaIH1juIZo:rf+p7tENzqqj2zXaIH1juIZo

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  6ffd4e839d20993f49694b0e36dfc562
- Size
  
  63KB
- MD5
  
  6ffd4e839d20993f49694b0e36dfc562
- SHA1
  
  dab880cd8f692417e867c39de88ce0bb031d7199
- SHA256
  
  6a437c4ce6ed44d3f5fae851da17069b2b0bdcb156a8b3af6b1b720529b7b05d
- SHA512
  
  a3a0a1f9b952835d6d1491b6c54702bd219a05e67ab06a225d9e9f3735266247260dea13c064eaf1a653e4e5c7c0122eaf0f81b22d20926546761b5fcda3e81e
- SSDEEP
  
  1536:rf+p75jENzWB451NUQJ5gHEqpXaIH1juIZo:rf+p7tENzqqj2zXaIH1juIZo
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2