6bee0a752fcbab0044af170e33af07fb55b4144aefdeb415f8d96b65aec176db | Triage

Sharing

General

Target

6bee0a752fcbab0044af170e33af07fb55b4144aefdeb415f8d96b65aec176db.exe
Size

451KB
Sample

240523-bqf87sgc7w
MD5

06a3775188713fe7636db661be41a4d0
SHA1

cdcc186cfd4d6852ecf81492d1bf5bf507e390ef
SHA256

6bee0a752fcbab0044af170e33af07fb55b4144aefdeb415f8d96b65aec176db
SHA512

b8d78dbd7e37fb16a5d44ff4866787ecdd431aa3615ece755666c29b8170623dfb2d82650a17bb703bf12e2fcd637415ab33d47b2d66831cf8f2b68ffe01d82b
SSDEEP

6144:Ws0K+bFTuF/GhGuPQ///NR5fLYG3eujPQ///NR5fqZo4tjS6Y:Uxs/NcZ7/NC64tm6Y

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  6bee0a752fcbab0044af170e33af07fb55b4144aefdeb415f8d96b65aec176db.exe
- Size
  
  451KB
- MD5
  
  06a3775188713fe7636db661be41a4d0
- SHA1
  
  cdcc186cfd4d6852ecf81492d1bf5bf507e390ef
- SHA256
  
  6bee0a752fcbab0044af170e33af07fb55b4144aefdeb415f8d96b65aec176db
- SHA512
  
  b8d78dbd7e37fb16a5d44ff4866787ecdd431aa3615ece755666c29b8170623dfb2d82650a17bb703bf12e2fcd637415ab33d47b2d66831cf8f2b68ffe01d82b
- SSDEEP
  
  6144:Ws0K+bFTuF/GhGuPQ///NR5fLYG3eujPQ///NR5fqZo4tjS6Y:Uxs/NcZ7/NC64tm6Y
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2