0e1120c2f451f2f67c09ab491d9832cb4a464307addd3c01ace815924c875f7e | Triage

Sharing

General

Target

0e1120c2f451f2f67c09ab491d9832cb4a464307addd3c01ace815924c875f7e
Size

384KB
Sample

240701-xbggbatane
MD5

67dcd2b14948f27c7a08e661b33f9814
SHA1

bea8406ca877bee31af6a0b763bd748fac15c1e6
SHA256

0e1120c2f451f2f67c09ab491d9832cb4a464307addd3c01ace815924c875f7e
SHA512

5282726434c1abdaf2128537d1f147996eca314077dfbe2a8a12ea0a7658d592e76136a0ad6974978e403735df7ae0a20b7bf0c9cf5abc8cd893107be72d191e
SSDEEP

6144:WZP1c76qDmpui6yYPaIGckpyWO63t5YNpui6yYPaIGcky0PVd68LwYwI+8mkUr1s:WZP1i6q6pV6yYPI3cpV6yYPZ0PVdvcY9

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  0e1120c2f451f2f67c09ab491d9832cb4a464307addd3c01ace815924c875f7e
- Size
  
  384KB
- MD5
  
  67dcd2b14948f27c7a08e661b33f9814
- SHA1
  
  bea8406ca877bee31af6a0b763bd748fac15c1e6
- SHA256
  
  0e1120c2f451f2f67c09ab491d9832cb4a464307addd3c01ace815924c875f7e
- SHA512
  
  5282726434c1abdaf2128537d1f147996eca314077dfbe2a8a12ea0a7658d592e76136a0ad6974978e403735df7ae0a20b7bf0c9cf5abc8cd893107be72d191e
- SSDEEP
  
  6144:WZP1c76qDmpui6yYPaIGckpyWO63t5YNpui6yYPaIGcky0PVd68LwYwI+8mkUr1s:WZP1i6q6pV6yYPI3cpV6yYPZ0PVdvcY9
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2