bdd314f96e40036bd6ec33fe8dd5f09e0f6a3e3bf8b6ef947c149fd8bab3903a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bdd314f96e40036bd6ec33fe8dd5f09e0f6a3e3bf8b6ef947c149fd8bab3903a
Size

427KB
Sample

240607-g6kt8aah3w
MD5

7a5b17d3132a2175122a5bb5f11517a7
SHA1

8fa8baa18a434a06292501d05bd1b4581505cc80
SHA256

bdd314f96e40036bd6ec33fe8dd5f09e0f6a3e3bf8b6ef947c149fd8bab3903a
SHA512

29e5972c17ad5ebc36002b0f5145c11cf4a6c657d3103d1e8353c7260cd5cae6431a10bca945663cc8e134e6ecd6c2c6e645594c274190dad6e6064e85db3eda
SSDEEP

12288:kDfyadKneG7KOyqFUqxX3/i5Gum6c0FjGmKuqZNMRuDEOPKXsvdI/Oy0VvO:wfvOAXRuD18Ad2

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  bdd314f96e40036bd6ec33fe8dd5f09e0f6a3e3bf8b6ef947c149fd8bab3903a
- Size
  
  427KB
- MD5
  
  7a5b17d3132a2175122a5bb5f11517a7
- SHA1
  
  8fa8baa18a434a06292501d05bd1b4581505cc80
- SHA256
  
  bdd314f96e40036bd6ec33fe8dd5f09e0f6a3e3bf8b6ef947c149fd8bab3903a
- SHA512
  
  29e5972c17ad5ebc36002b0f5145c11cf4a6c657d3103d1e8353c7260cd5cae6431a10bca945663cc8e134e6ecd6c2c6e645594c274190dad6e6064e85db3eda
- SSDEEP
  
  12288:kDfyadKneG7KOyqFUqxX3/i5Gum6c0FjGmKuqZNMRuDEOPKXsvdI/Oy0VvO:wfvOAXRuD18Ad2
Score

7^/10

persistence
- Drops startup file
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2