b7585a4e3e89a0eff0bf96b3893eea705906d5cc0fa342bdfea3a505c53eb695 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b7585a4e3e89a0eff0bf96b3893eea705906d5cc0fa342bdfea3a505c53eb695
Size

214KB
Sample

240516-c1ct7sge6y
MD5

0bddbd8b13ffb0a19b3e00c79626cee2
SHA1

eea6db5b5aa27b6d4de8b4ff76164f23b0e28398
SHA256

b7585a4e3e89a0eff0bf96b3893eea705906d5cc0fa342bdfea3a505c53eb695
SHA512

6966e2550bea9ea1f31f472bf4a0262c94dc990a3fddf8780bbd1bf96f8dc45d62223e8ac0cdcf7124fde82927b54f783d1eda7d2826b7528d7260999e07fe4d
SSDEEP

3072:ZgF+te6edaXH28chqGdReHAnDlmbGcGFDeaqIsKEYWyPVBweyFve3CFdagBk:ZgUtXkqGW+C9a6HYW0VBLyFviCqgBk

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  b7585a4e3e89a0eff0bf96b3893eea705906d5cc0fa342bdfea3a505c53eb695
- Size
  
  214KB
- MD5
  
  0bddbd8b13ffb0a19b3e00c79626cee2
- SHA1
  
  eea6db5b5aa27b6d4de8b4ff76164f23b0e28398
- SHA256
  
  b7585a4e3e89a0eff0bf96b3893eea705906d5cc0fa342bdfea3a505c53eb695
- SHA512
  
  6966e2550bea9ea1f31f472bf4a0262c94dc990a3fddf8780bbd1bf96f8dc45d62223e8ac0cdcf7124fde82927b54f783d1eda7d2826b7528d7260999e07fe4d
- SSDEEP
  
  3072:ZgF+te6edaXH28chqGdReHAnDlmbGcGFDeaqIsKEYWyPVBweyFve3CFdagBk:ZgUtXkqGW+C9a6HYW0VBLyFviCqgBk
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2