bf2274e8d4614846e2f172f2625d06dd093d7c1a7f1b8412863f3c0bd3e97ba3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bf2274e8d4614846e2f172f2625d06dd093d7c1a7f1b8412863f3c0bd3e97ba3
Size

305KB
Sample

240601-c6xfssfh23
MD5

3d94ea12bdced824cc30c1f5ccadc5f9
SHA1

478c852700e08b74b9a7fd6e624e8bcac705fd55
SHA256

bf2274e8d4614846e2f172f2625d06dd093d7c1a7f1b8412863f3c0bd3e97ba3
SHA512

2de001735a5e644f177a623546864c7f1b618df24c16950c18ab8dfb02f671e9d40f770c489724a296b5fb65a52c08068e72c97ee0901feec5204a4f6a3aa797
SSDEEP

3072:wSMDvk2DxIWff8Y6YLs+lc802eS5pAgYIqGvJ6887lbyMGjXF1kqaholmtbCQVDx:J2eWfkY6YLtlc85dZMGXF5ahdt3b0668

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  bf2274e8d4614846e2f172f2625d06dd093d7c1a7f1b8412863f3c0bd3e97ba3
- Size
  
  305KB
- MD5
  
  3d94ea12bdced824cc30c1f5ccadc5f9
- SHA1
  
  478c852700e08b74b9a7fd6e624e8bcac705fd55
- SHA256
  
  bf2274e8d4614846e2f172f2625d06dd093d7c1a7f1b8412863f3c0bd3e97ba3
- SHA512
  
  2de001735a5e644f177a623546864c7f1b618df24c16950c18ab8dfb02f671e9d40f770c489724a296b5fb65a52c08068e72c97ee0901feec5204a4f6a3aa797
- SSDEEP
  
  3072:wSMDvk2DxIWff8Y6YLs+lc802eS5pAgYIqGvJ6887lbyMGjXF1kqaholmtbCQVDx:J2eWfkY6YLtlc85dZMGXF5ahdt3b0668
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2