06cb8cc93095c0d0ac663c2e3b6db597fa6e2f2661172a2f8bc45eb1c85d6614 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

06cb8cc93095c0d0ac663c2e3b6db597fa6e2f2661172a2f8bc45eb1c85d6614
Size

99KB
Sample

240528-wwz9gseg3z
MD5

0f01f62416c75d8f3ac3dfefade6a6c4
SHA1

769fa82fa8f156b8934ecc4519a9d16378687982
SHA256

06cb8cc93095c0d0ac663c2e3b6db597fa6e2f2661172a2f8bc45eb1c85d6614
SHA512

90da3da242172227cd4724e953d1b2b2fb0208a4818424efce4aeb1328adf3e3fe0f042f5ae66ecf7054dfcbe5bb65b7e1f2d02f21c475f0cf4711981c809212
SSDEEP

3072:lD2JQijUDjWNp61K2xTTTTTTTYrf2Hgb3a3+X13XRzG:laJrOjWNp61nxTTTTTTTYrf2A7aOl3BK

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  06cb8cc93095c0d0ac663c2e3b6db597fa6e2f2661172a2f8bc45eb1c85d6614
- Size
  
  99KB
- MD5
  
  0f01f62416c75d8f3ac3dfefade6a6c4
- SHA1
  
  769fa82fa8f156b8934ecc4519a9d16378687982
- SHA256
  
  06cb8cc93095c0d0ac663c2e3b6db597fa6e2f2661172a2f8bc45eb1c85d6614
- SHA512
  
  90da3da242172227cd4724e953d1b2b2fb0208a4818424efce4aeb1328adf3e3fe0f042f5ae66ecf7054dfcbe5bb65b7e1f2d02f21c475f0cf4711981c809212
- SSDEEP
  
  3072:lD2JQijUDjWNp61K2xTTTTTTTYrf2Hgb3a3+X13XRzG:laJrOjWNp61nxTTTTTTTYrf2A7aOl3BK
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2