0b35c9632f2b8a438ccd17e69f7310ef79ef3217a821ba32a9eff0f93b6ec03d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0b35c9632f2b8a438ccd17e69f7310ef79ef3217a821ba32a9eff0f93b6ec03d.exe
Size

96KB
Sample

240703-z514xsxdjm
MD5

bb3a33f105915571a46232a6e167cc60
SHA1

12fb2ef5bb39da5f23c2ff0c6b2f4467d50e3d65
SHA256

0b35c9632f2b8a438ccd17e69f7310ef79ef3217a821ba32a9eff0f93b6ec03d
SHA512

02d0ea31e7f7567f5455a57848b14cc7d86b9d8fd6786073583c218eed8c59bf8bac8b6d4588972faacb4eef379e5646521e5c4d5599edf5a053d7058c8b88cd
SSDEEP

1536:tSS6bw3Fr8NRrwFJ0RbW+CabmvHlPqHJQbzB4e9MbinV39+ChnSdFFn7Elz45zF+:EE1aah1Z5kW4AMbqV39ThSdn7Elz45PI

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  0b35c9632f2b8a438ccd17e69f7310ef79ef3217a821ba32a9eff0f93b6ec03d.exe
- Size
  
  96KB
- MD5
  
  bb3a33f105915571a46232a6e167cc60
- SHA1
  
  12fb2ef5bb39da5f23c2ff0c6b2f4467d50e3d65
- SHA256
  
  0b35c9632f2b8a438ccd17e69f7310ef79ef3217a821ba32a9eff0f93b6ec03d
- SHA512
  
  02d0ea31e7f7567f5455a57848b14cc7d86b9d8fd6786073583c218eed8c59bf8bac8b6d4588972faacb4eef379e5646521e5c4d5599edf5a053d7058c8b88cd
- SSDEEP
  
  1536:tSS6bw3Fr8NRrwFJ0RbW+CabmvHlPqHJQbzB4e9MbinV39+ChnSdFFn7Elz45zF+:EE1aah1Z5kW4AMbqV39ThSdn7Elz45PI
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2