9db8ddf4a0f5f4774c044c24094eb6d78f846567b539a91af9cf699c97388fb1 | Triage

Sharing

General

Target

9db8ddf4a0f5f4774c044c24094eb6d78f846567b539a91af9cf699c97388fb1
Size

104KB
Sample

240421-bcyakaef86
MD5

27c6b3d13d8a175cb8f3589f570cf5f1
SHA1

0a676efd780232adf9120a7e21c89fac91d6f370
SHA256

9db8ddf4a0f5f4774c044c24094eb6d78f846567b539a91af9cf699c97388fb1
SHA512

d5a073d788f24f6fd40960df76f0c2f7dabebe11144e21cac6421082be56830d7c5643e5194be580a67fdb7c2be275bc08bfb8375a82d8afc39472f28301bf79
SSDEEP

3072:B0WMxpDA9cqvLlrlQTlNEyBcdyIsnB07tOtiaeeoVcuE+h3+rJM++SYSUZCbCdW:mWMxpDA9cqvLRlQT3bBcdyIgB07tOtiM

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  9db8ddf4a0f5f4774c044c24094eb6d78f846567b539a91af9cf699c97388fb1
- Size
  
  104KB
- MD5
  
  27c6b3d13d8a175cb8f3589f570cf5f1
- SHA1
  
  0a676efd780232adf9120a7e21c89fac91d6f370
- SHA256
  
  9db8ddf4a0f5f4774c044c24094eb6d78f846567b539a91af9cf699c97388fb1
- SHA512
  
  d5a073d788f24f6fd40960df76f0c2f7dabebe11144e21cac6421082be56830d7c5643e5194be580a67fdb7c2be275bc08bfb8375a82d8afc39472f28301bf79
- SSDEEP
  
  3072:B0WMxpDA9cqvLlrlQTlNEyBcdyIsnB07tOtiaeeoVcuE+h3+rJM++SYSUZCbCdW:mWMxpDA9cqvLRlQT3bBcdyIgB07tOtiM
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2