04db618f9ee363d315915697ae360b7c60800342996808674d447e1b62600461 | Triage

Sharing

General

Target

04db618f9ee363d315915697ae360b7c60800342996808674d447e1b62600461
Size

384KB
Sample

240523-wwbacsbe4y
MD5

b583632b451b3ecf91ee9ecd74f9dfa0
SHA1

7360e92b52f02a384135dfd01c4e44dd4e742c1d
SHA256

04db618f9ee363d315915697ae360b7c60800342996808674d447e1b62600461
SHA512

9d9b847812293709bd22200d0c2828f776887f5f8cb5c6539c2ef72bf743c78377e2d67be5b7f724128c4ffa64ea3788b7c4ea2885141c7ef2dc5e7bb5bdd783
SSDEEP

6144:pn2k3R4SQpmiypui6yYPaIGckpyWO63t5YNpui6yYPaIGcky0PVd68LwYwI+8mkn:DqmhpV6yYPI3cpV6yYPZ0PVdvcY9+8hn

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  04db618f9ee363d315915697ae360b7c60800342996808674d447e1b62600461
- Size
  
  384KB
- MD5
  
  b583632b451b3ecf91ee9ecd74f9dfa0
- SHA1
  
  7360e92b52f02a384135dfd01c4e44dd4e742c1d
- SHA256
  
  04db618f9ee363d315915697ae360b7c60800342996808674d447e1b62600461
- SHA512
  
  9d9b847812293709bd22200d0c2828f776887f5f8cb5c6539c2ef72bf743c78377e2d67be5b7f724128c4ffa64ea3788b7c4ea2885141c7ef2dc5e7bb5bdd783
- SSDEEP
  
  6144:pn2k3R4SQpmiypui6yYPaIGckpyWO63t5YNpui6yYPaIGcky0PVd68LwYwI+8mkn:DqmhpV6yYPI3cpV6yYPZ0PVdvcY9+8hn
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2