0b743d8ea22c0b6ceb8baf05614396966c14bfb3bad5cc9bfbe065dd7fe29789 | Triage

Sharing

General

Target

0b743d8ea22c0b6ceb8baf05614396966c14bfb3bad5cc9bfbe065dd7fe29789
Size

4.5MB
Sample

240416-xj16pahg73
MD5

aaffb1990431d4c9f330cea04609c34d
SHA1

e9f1a99ff5cca437fed768ab32fe7df28995eb0b
SHA256

0b743d8ea22c0b6ceb8baf05614396966c14bfb3bad5cc9bfbe065dd7fe29789
SHA512

b8999e195073d917212ca706b4579ad2ca8c1aee508b7347fd354caacdaaa22f14f6295b72f5959f730a59c8386fcf85f646a3d467fafc0f026be5b973be4be7
SSDEEP

49152:B1HqkB9f0VwEIV0MVp5BVkB9f0VZHJVkB9f0TTVfdg:B1HqVG0up5VVHTBlg

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  0b743d8ea22c0b6ceb8baf05614396966c14bfb3bad5cc9bfbe065dd7fe29789
- Size
  
  4.5MB
- MD5
  
  aaffb1990431d4c9f330cea04609c34d
- SHA1
  
  e9f1a99ff5cca437fed768ab32fe7df28995eb0b
- SHA256
  
  0b743d8ea22c0b6ceb8baf05614396966c14bfb3bad5cc9bfbe065dd7fe29789
- SHA512
  
  b8999e195073d917212ca706b4579ad2ca8c1aee508b7347fd354caacdaaa22f14f6295b72f5959f730a59c8386fcf85f646a3d467fafc0f026be5b973be4be7
- SSDEEP
  
  49152:B1HqkB9f0VwEIV0MVp5BVkB9f0VZHJVkB9f0TTVfdg:B1HqVG0up5VVHTBlg
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2