b1be0622ce71dbb029eb93cd5eb8f312d1362b63a12c002947562b5dfd8ac1a0 | Triage

Sharing

General

Target

b1be0622ce71dbb029eb93cd5eb8f312d1362b63a12c002947562b5dfd8ac1a0
Size

45KB
Sample

240411-cab5zshc23
MD5

33c80730115d9e6491fbf1c3be61f5af
SHA1

b9fa78ba618fcf70715c1e2350116277c4a2fca6
SHA256

b1be0622ce71dbb029eb93cd5eb8f312d1362b63a12c002947562b5dfd8ac1a0
SHA512

378b69bfa2f2d73fee69a033d9de131e239cd61cfb72a70d043553b33346bbbf3752885821c8b9773237d1b865ea66436ae50f06bab5ad37574ca389384a6726
SSDEEP

768:mX4TJW8MyuySF9NRWFxm69iRpscte9nG+/1H5S:5A8MyvcWuuAjg0

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  b1be0622ce71dbb029eb93cd5eb8f312d1362b63a12c002947562b5dfd8ac1a0
- Size
  
  45KB
- MD5
  
  33c80730115d9e6491fbf1c3be61f5af
- SHA1
  
  b9fa78ba618fcf70715c1e2350116277c4a2fca6
- SHA256
  
  b1be0622ce71dbb029eb93cd5eb8f312d1362b63a12c002947562b5dfd8ac1a0
- SHA512
  
  378b69bfa2f2d73fee69a033d9de131e239cd61cfb72a70d043553b33346bbbf3752885821c8b9773237d1b865ea66436ae50f06bab5ad37574ca389384a6726
- SSDEEP
  
  768:mX4TJW8MyuySF9NRWFxm69iRpscte9nG+/1H5S:5A8MyvcWuuAjg0
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2