b6a788d5f0fc14301cf0e90e09401e88ec1fd7629dd0eeefca96af3dce67b8ac | Triage

Sharing

General

Target

b6a788d5f0fc14301cf0e90e09401e88ec1fd7629dd0eeefca96af3dce67b8ac
Size

80KB
Sample

240411-cgk2gahe39
MD5

60eff8e9e5d19bc7c865df607b630028
SHA1

05a2ca656380638446437cfc10f7fa8ed852aa1f
SHA256

b6a788d5f0fc14301cf0e90e09401e88ec1fd7629dd0eeefca96af3dce67b8ac
SHA512

844b01eab1b8003dde3f2995c267de0768b3f7e6c5c89a72ed02cceed25df2e399431bc2081f329bc70f9c29110c545d2f636b97ec912d3c5babb3d97a232657
SSDEEP

1536:6J2XVAlulkn4tVHZqTsSNukqZNGG9q2dEXzDfWqdMVrlEFtyb7IYOOqw4Tv:6welO7tVHZqh0ZNSXzTWqAhELy1MTTv

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  b6a788d5f0fc14301cf0e90e09401e88ec1fd7629dd0eeefca96af3dce67b8ac
- Size
  
  80KB
- MD5
  
  60eff8e9e5d19bc7c865df607b630028
- SHA1
  
  05a2ca656380638446437cfc10f7fa8ed852aa1f
- SHA256
  
  b6a788d5f0fc14301cf0e90e09401e88ec1fd7629dd0eeefca96af3dce67b8ac
- SHA512
  
  844b01eab1b8003dde3f2995c267de0768b3f7e6c5c89a72ed02cceed25df2e399431bc2081f329bc70f9c29110c545d2f636b97ec912d3c5babb3d97a232657
- SSDEEP
  
  1536:6J2XVAlulkn4tVHZqTsSNukqZNGG9q2dEXzDfWqdMVrlEFtyb7IYOOqw4Tv:6welO7tVHZqh0ZNSXzTWqAhELy1MTTv
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2