2166fbd5db7f6644f7bcbb3ae27319ffd336a10d005daba17081268b8b5a0bb6 | Triage

Sharing

General

Target

2166fbd5db7f6644f7bcbb3ae27319ffd336a10d005daba17081268b8b5a0bb6
Size

359KB
Sample

240615-ybmh1awfqn
MD5

944b7db0ab1098360e5f04c297b65c44
SHA1

c4f68090b255a5f4595ec678061e7bcb0c1e83fa
SHA256

2166fbd5db7f6644f7bcbb3ae27319ffd336a10d005daba17081268b8b5a0bb6
SHA512

8ff86f29c18a51677ad7127cdbdb144f6714723c9c90f4849442e48c07eac731306c9f90c9819e7de703df70ab4087becc2fe1352e30b8a8ee8ae936b8ac3b09
SSDEEP

6144:guaWSkv3hcYVrOigcC6oQ6+EcC6oQ6+YahBQyiTACPTRN6+YahBQyiTAgiuMRlx+:cW9v37K9E6n9E6vah6yiMCPTRN6vah6F

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  2166fbd5db7f6644f7bcbb3ae27319ffd336a10d005daba17081268b8b5a0bb6
- Size
  
  359KB
- MD5
  
  944b7db0ab1098360e5f04c297b65c44
- SHA1
  
  c4f68090b255a5f4595ec678061e7bcb0c1e83fa
- SHA256
  
  2166fbd5db7f6644f7bcbb3ae27319ffd336a10d005daba17081268b8b5a0bb6
- SHA512
  
  8ff86f29c18a51677ad7127cdbdb144f6714723c9c90f4849442e48c07eac731306c9f90c9819e7de703df70ab4087becc2fe1352e30b8a8ee8ae936b8ac3b09
- SSDEEP
  
  6144:guaWSkv3hcYVrOigcC6oQ6+EcC6oQ6+YahBQyiTACPTRN6+YahBQyiTAgiuMRlx+:cW9v37K9E6n9E6vah6yiMCPTRN6vah6F
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2