bd65c853b72eb50cc7072af43a85389c1811c39214cc7eddd6742fd1454f4bff | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bd65c853b72eb50cc7072af43a85389c1811c39214cc7eddd6742fd1454f4bff
Size

96KB
Sample

240612-d8frhazeme
MD5

48af8de0e29c083f95d22476d5dfc73a
SHA1

890e9ffa15f81e5c5041f66061e58087d958ee5c
SHA256

bd65c853b72eb50cc7072af43a85389c1811c39214cc7eddd6742fd1454f4bff
SHA512

40a0f55cb21c2e7ad198374958ac83842d62cfb423d5c64b44407038a8fd536abc36f3553c6d5b37d051957dee2cc5c7a54dd17f98748ac4161a56f6cd2171f9
SSDEEP

1536:GtRHz29UIsynvh3nfp+uZrhrUQVoMdUT+irF:GNIfdswrhr1Rhk

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  bd65c853b72eb50cc7072af43a85389c1811c39214cc7eddd6742fd1454f4bff
- Size
  
  96KB
- MD5
  
  48af8de0e29c083f95d22476d5dfc73a
- SHA1
  
  890e9ffa15f81e5c5041f66061e58087d958ee5c
- SHA256
  
  bd65c853b72eb50cc7072af43a85389c1811c39214cc7eddd6742fd1454f4bff
- SHA512
  
  40a0f55cb21c2e7ad198374958ac83842d62cfb423d5c64b44407038a8fd536abc36f3553c6d5b37d051957dee2cc5c7a54dd17f98748ac4161a56f6cd2171f9
- SSDEEP
  
  1536:GtRHz29UIsynvh3nfp+uZrhrUQVoMdUT+irF:GNIfdswrhr1Rhk
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2