b01ca64142d743372d605d4283bc42c08a8fd6ac88cab705d3665edb9873452c | Triage

Sharing

General

Target

b01ca64142d743372d605d4283bc42c08a8fd6ac88cab705d3665edb9873452c
Size

107KB
Sample

240416-bfmy1adc36
MD5

6433a7735ee483a5bfce30986cc36306
SHA1

589c3540c2175babd5cf3f04d2f411026ee5db2c
SHA256

b01ca64142d743372d605d4283bc42c08a8fd6ac88cab705d3665edb9873452c
SHA512

7609fc6ca0396b27267a9b32cbf6931fdfa76e6836b10854eec40bd683dfab76756b322d8d28faae5283296235ef3935f460b8f33b9b2e410ba5874a051ceb12
SSDEEP

3072:J5wgZUjGnTTlTTmmm7/jhsLaMU7uihJ5233Y:4SUATTlTTmmm7r6Lni5i3Y

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  b01ca64142d743372d605d4283bc42c08a8fd6ac88cab705d3665edb9873452c
- Size
  
  107KB
- MD5
  
  6433a7735ee483a5bfce30986cc36306
- SHA1
  
  589c3540c2175babd5cf3f04d2f411026ee5db2c
- SHA256
  
  b01ca64142d743372d605d4283bc42c08a8fd6ac88cab705d3665edb9873452c
- SHA512
  
  7609fc6ca0396b27267a9b32cbf6931fdfa76e6836b10854eec40bd683dfab76756b322d8d28faae5283296235ef3935f460b8f33b9b2e410ba5874a051ceb12
- SSDEEP
  
  3072:J5wgZUjGnTTlTTmmm7/jhsLaMU7uihJ5233Y:4SUATTlTTmmm7r6Lni5i3Y
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2