6cd03175cdf83a89e7f82274d19eaec1ed31f0c859cd6fdc7d1011fec4c10227 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6cd03175cdf83a89e7f82274d19eaec1ed31f0c859cd6fdc7d1011fec4c10227
Size

98KB
Sample

240515-27wnbsha5y
MD5

505b7d8b3d5f6912dafbd53bd802a628
SHA1

4d5ff9ea5c7c062ce7720cc94f213cc1616b6ed3
SHA256

6cd03175cdf83a89e7f82274d19eaec1ed31f0c859cd6fdc7d1011fec4c10227
SHA512

b1213e31d530d48962053277f36aaf3dfeff6eaa2583b78bc06109181d78ec9e07601c0e5e2b2f0ff19ea30e1949fd037a79d4911d2d18a7fe9f0050d51d7854
SSDEEP

3072:Y0w1+uZ0WsXHZLITJP6w6wEReFKPD375lHzpa1P:Yj50WGLsAwLEReYr75lHzpaF

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  6cd03175cdf83a89e7f82274d19eaec1ed31f0c859cd6fdc7d1011fec4c10227
- Size
  
  98KB
- MD5
  
  505b7d8b3d5f6912dafbd53bd802a628
- SHA1
  
  4d5ff9ea5c7c062ce7720cc94f213cc1616b6ed3
- SHA256
  
  6cd03175cdf83a89e7f82274d19eaec1ed31f0c859cd6fdc7d1011fec4c10227
- SHA512
  
  b1213e31d530d48962053277f36aaf3dfeff6eaa2583b78bc06109181d78ec9e07601c0e5e2b2f0ff19ea30e1949fd037a79d4911d2d18a7fe9f0050d51d7854
- SSDEEP
  
  3072:Y0w1+uZ0WsXHZLITJP6w6wEReFKPD375lHzpa1P:Yj50WGLsAwLEReYr75lHzpaF
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2