108223759ad2cba8fb9c414ef209180eee8ffeec2b86a07abffe054ad0d354e2 | Triage

Sharing

General

Target

108223759ad2cba8fb9c414ef209180eee8ffeec2b86a07abffe054ad0d354e2
Size

1.3MB
Sample

240629-xbyetstblb
MD5

301f510a1f8568030cc51b73733f9ee2
SHA1

1e016a159c80fb0dcde6ddbd38c4dc2378ca69fe
SHA256

108223759ad2cba8fb9c414ef209180eee8ffeec2b86a07abffe054ad0d354e2
SHA512

1f41d77f0b1df2f84b26963309e30787a5976ab1111c47a4b78a3b04596333270d6656205e313cf3e9f60e7880f3718dde79906d7554e4943c311c282c3a668e
SSDEEP

24576:nvr4B9f01ZmQvrb91v92W9C05wkEPSOdKkrzEoxrC9toC9Dq9onk8:nkB9f0VP91v92W805IPSOdKgzEoxrlQ3

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  108223759ad2cba8fb9c414ef209180eee8ffeec2b86a07abffe054ad0d354e2
- Size
  
  1.3MB
- MD5
  
  301f510a1f8568030cc51b73733f9ee2
- SHA1
  
  1e016a159c80fb0dcde6ddbd38c4dc2378ca69fe
- SHA256
  
  108223759ad2cba8fb9c414ef209180eee8ffeec2b86a07abffe054ad0d354e2
- SHA512
  
  1f41d77f0b1df2f84b26963309e30787a5976ab1111c47a4b78a3b04596333270d6656205e313cf3e9f60e7880f3718dde79906d7554e4943c311c282c3a668e
- SSDEEP
  
  24576:nvr4B9f01ZmQvrb91v92W9C05wkEPSOdKkrzEoxrC9toC9Dq9onk8:nkB9f0VP91v92W805IPSOdKgzEoxrlQ3
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2