ba42e1eb7c868733a788ee9032d2bd46d5d87ca439e0d2f4343cd797a9f9938b | Triage

Sharing

General

Target

ba42e1eb7c868733a788ee9032d2bd46d5d87ca439e0d2f4343cd797a9f9938b
Size

93KB
Sample

240614-dsxp3sxbnp
MD5

a2dac0912d283d1a28fdf145793c9908
SHA1

19384a145a6a06131f347145da583594daeaf731
SHA256

ba42e1eb7c868733a788ee9032d2bd46d5d87ca439e0d2f4343cd797a9f9938b
SHA512

9c6b447d45cb387f156a1a3f3524e42a1cc0338883f0aba9ae75dbd186540ba3ae760e08577ec88b9e4f2f0579c6407175f7beb2e6dba9001af47bbd2f3ab120
SSDEEP

1536:oZKyWwTK4/JFtQIXV0sHUDIWk7UIi9cZsRQLJRkRLJzeLD9N0iQGRNQR8RyV+32F:oMyWRcDX/UIWk7BivetSJdEN0s4WE+3K

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  ba42e1eb7c868733a788ee9032d2bd46d5d87ca439e0d2f4343cd797a9f9938b
- Size
  
  93KB
- MD5
  
  a2dac0912d283d1a28fdf145793c9908
- SHA1
  
  19384a145a6a06131f347145da583594daeaf731
- SHA256
  
  ba42e1eb7c868733a788ee9032d2bd46d5d87ca439e0d2f4343cd797a9f9938b
- SHA512
  
  9c6b447d45cb387f156a1a3f3524e42a1cc0338883f0aba9ae75dbd186540ba3ae760e08577ec88b9e4f2f0579c6407175f7beb2e6dba9001af47bbd2f3ab120
- SSDEEP
  
  1536:oZKyWwTK4/JFtQIXV0sHUDIWk7UIi9cZsRQLJRkRLJzeLD9N0iQGRNQR8RyV+32F:oMyWRcDX/UIWk7BivetSJdEN0s4WE+3K
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2