b99b4baadcc0b5cc85534ee71cf2d6c9dc6b3a4cb66876b11fbd74b57886b221 | Triage

Sharing

General

Target

b99b4baadcc0b5cc85534ee71cf2d6c9dc6b3a4cb66876b11fbd74b57886b221
Size

2.7MB
Sample

240411-ck6scacg21
MD5

e8e646df7a286f4838d1f4b35995c635
SHA1

13464ef09447899ea0d1c3a810f8c0c7939bf5c5
SHA256

b99b4baadcc0b5cc85534ee71cf2d6c9dc6b3a4cb66876b11fbd74b57886b221
SHA512

b5973932d67401a471676ba6a4323031be0ba479f70f56d305667938a001a5e70940ef5b6bd5328432b517348e1af3bf179cc97d58a2cd19eba499f3a9febf2a
SSDEEP

49152:/aSHFaZRBEYyqmS2DiHPKQgmZUnaUgpC7jvha51P4wzlF65CEYQA5j4:/aSHFaZRBEYyqmS2DiHPKQgmZ0aUgUjJ

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  b99b4baadcc0b5cc85534ee71cf2d6c9dc6b3a4cb66876b11fbd74b57886b221
- Size
  
  2.7MB
- MD5
  
  e8e646df7a286f4838d1f4b35995c635
- SHA1
  
  13464ef09447899ea0d1c3a810f8c0c7939bf5c5
- SHA256
  
  b99b4baadcc0b5cc85534ee71cf2d6c9dc6b3a4cb66876b11fbd74b57886b221
- SHA512
  
  b5973932d67401a471676ba6a4323031be0ba479f70f56d305667938a001a5e70940ef5b6bd5328432b517348e1af3bf179cc97d58a2cd19eba499f3a9febf2a
- SSDEEP
  
  49152:/aSHFaZRBEYyqmS2DiHPKQgmZUnaUgpC7jvha51P4wzlF65CEYQA5j4:/aSHFaZRBEYyqmS2DiHPKQgmZ0aUgUjJ
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2