b0bd0904a7733d458396722dbf9901c21bf9699b78094092a17ec5d4cb38690c | Triage

Sharing

General

Target

b0bd0904a7733d458396722dbf9901c21bf9699b78094092a17ec5d4cb38690c
Size

194KB
Sample

240701-bym2qavhpn
MD5

bf3832ec3ae047484f66dd75a4f48917
SHA1

7a805c6e6b234272700b251edce709362acf8a9a
SHA256

b0bd0904a7733d458396722dbf9901c21bf9699b78094092a17ec5d4cb38690c
SHA512

5653f76e9cc9f8b2a49ab60adf9637e75ef7f73c5b726f2dfefc2ba7a96116d9ce513025ea7bcf9ef3d7e7cf3b14505bd2a0ba76bf75057c00bc43a21057aa07
SSDEEP

6144:l80Ot2frdSfUNRbCeKpNYxWlJ7mkD6pNY:l9Ow

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  b0bd0904a7733d458396722dbf9901c21bf9699b78094092a17ec5d4cb38690c
- Size
  
  194KB
- MD5
  
  bf3832ec3ae047484f66dd75a4f48917
- SHA1
  
  7a805c6e6b234272700b251edce709362acf8a9a
- SHA256
  
  b0bd0904a7733d458396722dbf9901c21bf9699b78094092a17ec5d4cb38690c
- SHA512
  
  5653f76e9cc9f8b2a49ab60adf9637e75ef7f73c5b726f2dfefc2ba7a96116d9ce513025ea7bcf9ef3d7e7cf3b14505bd2a0ba76bf75057c00bc43a21057aa07
- SSDEEP
  
  6144:l80Ot2frdSfUNRbCeKpNYxWlJ7mkD6pNY:l9Ow
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2