06fbe51c389d145d1a439315a66df4e1d70a89c5fba38e78e4428db43ea7fcb5 | Triage

Sharing

General

Target

06fbe51c389d145d1a439315a66df4e1d70a89c5fba38e78e4428db43ea7fcb5
Size

169KB
Sample

240603-w1z5aafg94
MD5

3888cf45cb445050971ab435b9711b7e
SHA1

44d3083f0a05bde2a4f55065b9175080b76fc6d7
SHA256

06fbe51c389d145d1a439315a66df4e1d70a89c5fba38e78e4428db43ea7fcb5
SHA512

d09600e4bd1985783bd36d7b172aab8a2004c100e0e610b56d8d62e9bd91c91f2a3ee5e1572235a289984718f135401a2112f13c5af5d6a8f085a3566f2bfc98
SSDEEP

3072:zKhyNCq8NQYyMhl63MnRPxMeEvPOdgujv6NLPfFFrKP92f65Ha:zNCqwnpRJML3OdgawrFZKPf9

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  06fbe51c389d145d1a439315a66df4e1d70a89c5fba38e78e4428db43ea7fcb5
- Size
  
  169KB
- MD5
  
  3888cf45cb445050971ab435b9711b7e
- SHA1
  
  44d3083f0a05bde2a4f55065b9175080b76fc6d7
- SHA256
  
  06fbe51c389d145d1a439315a66df4e1d70a89c5fba38e78e4428db43ea7fcb5
- SHA512
  
  d09600e4bd1985783bd36d7b172aab8a2004c100e0e610b56d8d62e9bd91c91f2a3ee5e1572235a289984718f135401a2112f13c5af5d6a8f085a3566f2bfc98
- SSDEEP
  
  3072:zKhyNCq8NQYyMhl63MnRPxMeEvPOdgujv6NLPfFFrKP92f65Ha:zNCqwnpRJML3OdgawrFZKPf9
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2