6721c52a5d65da9d9be5bcf6123f8b0ddfa433907cea1b623535da96173523c9 | Triage

Sharing

General

Target

6721c52a5d65da9d9be5bcf6123f8b0ddfa433907cea1b623535da96173523c9
Size

104KB
Sample

240420-2wfgzacb24
MD5

9d09f328992cdd807660473d5a701a93
SHA1

202afdc839858851952699a77f819a15300483d3
SHA256

6721c52a5d65da9d9be5bcf6123f8b0ddfa433907cea1b623535da96173523c9
SHA512

2dd10bc3b9abb02fb2456308aabf1ae18f26e45a04b8c4a9213e0cb9b56452fad9720eef0050defe2100285f450f8ba7ab33835df276b90c38f373bdaa6b0ec6
SSDEEP

3072:4DdPZsdsyyHwSi9vAPKJpdm08r3kremwc/gHq/e:0Wd/yQTJAPQ8r3/fc/A

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  6721c52a5d65da9d9be5bcf6123f8b0ddfa433907cea1b623535da96173523c9
- Size
  
  104KB
- MD5
  
  9d09f328992cdd807660473d5a701a93
- SHA1
  
  202afdc839858851952699a77f819a15300483d3
- SHA256
  
  6721c52a5d65da9d9be5bcf6123f8b0ddfa433907cea1b623535da96173523c9
- SHA512
  
  2dd10bc3b9abb02fb2456308aabf1ae18f26e45a04b8c4a9213e0cb9b56452fad9720eef0050defe2100285f450f8ba7ab33835df276b90c38f373bdaa6b0ec6
- SSDEEP
  
  3072:4DdPZsdsyyHwSi9vAPKJpdm08r3kremwc/gHq/e:0Wd/yQTJAPQ8r3/fc/A
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2