6974c93096341841afec82e4c687c574c6394514b8c1b6ae3f054618bad5497b | Triage

Sharing

General

Target

6974c93096341841afec82e4c687c574c6394514b8c1b6ae3f054618bad5497b
Size

508KB
Sample

240703-2v8gcszfrr
MD5

36eef521e27b2708ab53176480cd2c77
SHA1

a920473df09c17eed64b00f31a364885260825ec
SHA256

6974c93096341841afec82e4c687c574c6394514b8c1b6ae3f054618bad5497b
SHA512

effb25e83d586a6a71c142705f76d1eb6b5bed949da2c6daecf93efc05adc8bb982f3ccbbf4f5237d68626ee68e063f60d8484dbfb8c24a32ce70cf551289879
SSDEEP

6144:T3igRStD5IIR+P2sz5SQUyi1VhEl7baEZlbYnHeo/FcwTXS+tB:TygRStKosjUyiPhElyE/bYHB/FciX5B

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  6974c93096341841afec82e4c687c574c6394514b8c1b6ae3f054618bad5497b
- Size
  
  508KB
- MD5
  
  36eef521e27b2708ab53176480cd2c77
- SHA1
  
  a920473df09c17eed64b00f31a364885260825ec
- SHA256
  
  6974c93096341841afec82e4c687c574c6394514b8c1b6ae3f054618bad5497b
- SHA512
  
  effb25e83d586a6a71c142705f76d1eb6b5bed949da2c6daecf93efc05adc8bb982f3ccbbf4f5237d68626ee68e063f60d8484dbfb8c24a32ce70cf551289879
- SSDEEP
  
  6144:T3igRStD5IIR+P2sz5SQUyi1VhEl7baEZlbYnHeo/FcwTXS+tB:TygRStKosjUyiPhElyE/bYHB/FciX5B
Score

7^/10

persistence
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2