bbe620d70aad0c662d2502f678791f914bd318917ffc7af4452b66a243ac83b6 | Triage

Sharing

General

Target

bbe620d70aad0c662d2502f678791f914bd318917ffc7af4452b66a243ac83b6
Size

135KB
Sample

240524-c1b8nsab2z
MD5

b3bf8e1f053c084789d19225470626cb
SHA1

4d73391e70d27479d725274f923209ef1eec9958
SHA256

bbe620d70aad0c662d2502f678791f914bd318917ffc7af4452b66a243ac83b6
SHA512

08a2d2f6b2a7aedf03ec65ac547ba217f87475df8cd1d1d1354cad81a490b582149550e9e2ad39680908197d44b345ac33507a6f2ad88b28f724a8c3ed5de64f
SSDEEP

1536:UfsEqouTRcG/Mzvgf7xEuvnXNTRdUzwTekUOisZ1yDDajtXbVle/:UVqoCl/YgjxEufVU0TbTyDDalG/

Score

10^/10

evasion persistence

Malware Config

Targets

- Target
  
  bbe620d70aad0c662d2502f678791f914bd318917ffc7af4452b66a243ac83b6
- Size
  
  135KB
- MD5
  
  b3bf8e1f053c084789d19225470626cb
- SHA1
  
  4d73391e70d27479d725274f923209ef1eec9958
- SHA256
  
  bbe620d70aad0c662d2502f678791f914bd318917ffc7af4452b66a243ac83b6
- SHA512
  
  08a2d2f6b2a7aedf03ec65ac547ba217f87475df8cd1d1d1354cad81a490b582149550e9e2ad39680908197d44b345ac33507a6f2ad88b28f724a8c3ed5de64f
- SSDEEP
  
  1536:UfsEqouTRcG/Mzvgf7xEuvnXNTRdUzwTekUOisZ1yDDajtXbVle/:UVqoCl/YgjxEufVU0TbTyDDalG/
Score

10^/10

evasion persistence
- Modifies visiblity of hidden/system files in Explorer
  evasion
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Scheduled Task/Job

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Scheduled Task/Job

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Scheduled Task/Job

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

evasionpersistence

behavioral2

evasionpersistence