986873ec57c017d4cd90e4d40aca618573b3e2a40bd443732d8e7080ab8d8475 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

986873ec57c017d4cd90e4d40aca618573b3e2a40bd443732d8e7080ab8d8475
Size

59KB
Sample

240528-bfc4sshh96
MD5

9856e76437ac4c61c220bcdc0bdc14b1
SHA1

d7a898e91e5099f066181c25392362ba97af1271
SHA256

986873ec57c017d4cd90e4d40aca618573b3e2a40bd443732d8e7080ab8d8475
SHA512

6c6f24b8e4b45c892077a6d7ffaf9aeb4ad640ab28572ca51c1244c486d229808739ea783cc75e320777ba3a2e96a178ae55c11027926c5fa92b6b4c9b502bf3
SSDEEP

768:QaLYrp6WNzP8tsJvkD1YLi7rKWS1bWTSltFrGQ789X0Z/1H58N5nf1fZMEBFELv8:srQa941uqKpeMVzqGmnNCyVso

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  986873ec57c017d4cd90e4d40aca618573b3e2a40bd443732d8e7080ab8d8475
- Size
  
  59KB
- MD5
  
  9856e76437ac4c61c220bcdc0bdc14b1
- SHA1
  
  d7a898e91e5099f066181c25392362ba97af1271
- SHA256
  
  986873ec57c017d4cd90e4d40aca618573b3e2a40bd443732d8e7080ab8d8475
- SHA512
  
  6c6f24b8e4b45c892077a6d7ffaf9aeb4ad640ab28572ca51c1244c486d229808739ea783cc75e320777ba3a2e96a178ae55c11027926c5fa92b6b4c9b502bf3
- SSDEEP
  
  768:QaLYrp6WNzP8tsJvkD1YLi7rKWS1bWTSltFrGQ789X0Z/1H58N5nf1fZMEBFELv8:srQa941uqKpeMVzqGmnNCyVso
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2