6a1c610007dc5b6d731f6aa063f48d8d7d68ee367443178fdab9a55b4f25a00c | Triage

Sharing

General

Target

6a1c610007dc5b6d731f6aa063f48d8d7d68ee367443178fdab9a55b4f25a00c
Size

64KB
Sample

240420-2z7evscc23
MD5

3e03fe41a2ce84cfb556baaf97b797c5
SHA1

e8ba267e2dcae55d4345e001356bbece01d28617
SHA256

6a1c610007dc5b6d731f6aa063f48d8d7d68ee367443178fdab9a55b4f25a00c
SHA512

8d17c8b74a756278a8e9323ee7c0f77f63d9ea7bbae23f846b4e5392b2f7e7d31d70029b142314b74ecb9b7cb4355afb903d109e0ae43dfa9a430a28abdf51a2
SSDEEP

1536:Igyh+JkAj+/nRGpl4he1LN3/NoE8WV4ZbleO6XKhbMbt2:ty4kA5p6he1LN3/NnmZbQO6Xjt2

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  6a1c610007dc5b6d731f6aa063f48d8d7d68ee367443178fdab9a55b4f25a00c
- Size
  
  64KB
- MD5
  
  3e03fe41a2ce84cfb556baaf97b797c5
- SHA1
  
  e8ba267e2dcae55d4345e001356bbece01d28617
- SHA256
  
  6a1c610007dc5b6d731f6aa063f48d8d7d68ee367443178fdab9a55b4f25a00c
- SHA512
  
  8d17c8b74a756278a8e9323ee7c0f77f63d9ea7bbae23f846b4e5392b2f7e7d31d70029b142314b74ecb9b7cb4355afb903d109e0ae43dfa9a430a28abdf51a2
- SSDEEP
  
  1536:Igyh+JkAj+/nRGpl4he1LN3/NoE8WV4ZbleO6XKhbMbt2:ty4kA5p6he1LN3/NnmZbQO6Xjt2
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2