Overview

overview

10

Static

static

3

baead90cd4...7e.exe

windows7-x64

10

baead90cd4...7e.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    baead90cd4ea09008308e35b6636a5fab25e801cd36a993979b87d626d1b777e

  • Size

    272KB

  • Sample

    240524-cy46nsab44

  • MD5

    b2d3a31a7965a5d8c88d955feae2918c

  • SHA1

    e1f94b6e84a4f14544f7ea78fe6e8c7b43968d3a

  • SHA256

    baead90cd4ea09008308e35b6636a5fab25e801cd36a993979b87d626d1b777e

  • SHA512

    bdf5cd9bb4ed54090b4e3e2d7d4af252e5b8c6afb6deef07404c764b69e252f3232d712b90041cf06ceed1f29bda151a93ddb803a3524777db501b755b62256c

  • SSDEEP

    6144:UHHlR9MRhZukD6xjC6ZgsOK4AHXwpnxGvN98gZ+/+:+Hlyex+6ZxyhY97n

Score
10/10
persistence

Malware Config

Targets

    • Target

      baead90cd4ea09008308e35b6636a5fab25e801cd36a993979b87d626d1b777e

    • Size

      272KB

    • MD5

      b2d3a31a7965a5d8c88d955feae2918c

    • SHA1

      e1f94b6e84a4f14544f7ea78fe6e8c7b43968d3a

    • SHA256

      baead90cd4ea09008308e35b6636a5fab25e801cd36a993979b87d626d1b777e

    • SHA512

      bdf5cd9bb4ed54090b4e3e2d7d4af252e5b8c6afb6deef07404c764b69e252f3232d712b90041cf06ceed1f29bda151a93ddb803a3524777db501b755b62256c

    • SSDEEP

      6144:UHHlR9MRhZukD6xjC6ZgsOK4AHXwpnxGvN98gZ+/+:+Hlyex+6ZxyhY97n

    Score
    10/10
    persistence

    • Adds autorun key to be loaded by Explorer.exe on startup

      persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

1
T1547

Registry Run Keys / Startup Folder

1
T1547.001

Privilege Escalation

Boot or Logon Autostart Execution

1
T1547

Registry Run Keys / Startup Folder

1
T1547.001

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks