c4fb706bbfd1158cd2c9b98d35011e9bdd015d6d2d7c9f03fa2c158d7c7d7924 | Triage

Sharing

General

Target

b2c56f2f4487ce28b83c6e3c6722a703.exe
Size

304KB
Sample

240517-r1kmdacb5v
MD5

b2c56f2f4487ce28b83c6e3c6722a703
SHA1

d03d9ec1e07c14789060f07ca25151e970f1cbf1
SHA256

c4fb706bbfd1158cd2c9b98d35011e9bdd015d6d2d7c9f03fa2c158d7c7d7924
SHA512

a886c3410b236cdc2aa53310a116d02256b0daaa6ce8bfecb113a3fde6d085bfb7bafb9b2df8190de56e7823ccd9156d6c55f050a223a57e56d3a66fee345346
SSDEEP

6144:FXE9GZpuN66gjMwGsmLrZNs/VKi/MwGsmLr5+NodY:FXE9DXgjMmmpNs/VXMmmgJ

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  b2c56f2f4487ce28b83c6e3c6722a703.exe
- Size
  
  304KB
- MD5
  
  b2c56f2f4487ce28b83c6e3c6722a703
- SHA1
  
  d03d9ec1e07c14789060f07ca25151e970f1cbf1
- SHA256
  
  c4fb706bbfd1158cd2c9b98d35011e9bdd015d6d2d7c9f03fa2c158d7c7d7924
- SHA512
  
  a886c3410b236cdc2aa53310a116d02256b0daaa6ce8bfecb113a3fde6d085bfb7bafb9b2df8190de56e7823ccd9156d6c55f050a223a57e56d3a66fee345346
- SSDEEP
  
  6144:FXE9GZpuN66gjMwGsmLrZNs/VKi/MwGsmLr5+NodY:FXE9DXgjMmmpNs/VXMmmgJ
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2