6981e30bd78c433be09c91ecaef94edca73bf8f549cb6beef0034a4a171f8b13 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6981e30bd78c433be09c91ecaef94edca73bf8f549cb6beef0034a4a171f8b13
Size

67KB
Sample

240704-2kyjeavhrh
MD5

de6ce1a046cf39ed17b83741f170668f
SHA1

d38d9b3645349e135e36833aaf318ad6cc778553
SHA256

6981e30bd78c433be09c91ecaef94edca73bf8f549cb6beef0034a4a171f8b13
SHA512

9a09c7de90fce78027f284581a75a36f2f33cbfd29f5c187ede79373bd26e85ea90fc990b4aee314ee564bb12bb3f516e552fef29c9b1d3c2095bb6ebfb57d62
SSDEEP

1536:Xl7HZoy5fAzHB28pk9woOZT7+T/KRQcZArwXRQYR/Rj:XVCy5i/0m8/0QNwXeYVx

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  6981e30bd78c433be09c91ecaef94edca73bf8f549cb6beef0034a4a171f8b13
- Size
  
  67KB
- MD5
  
  de6ce1a046cf39ed17b83741f170668f
- SHA1
  
  d38d9b3645349e135e36833aaf318ad6cc778553
- SHA256
  
  6981e30bd78c433be09c91ecaef94edca73bf8f549cb6beef0034a4a171f8b13
- SHA512
  
  9a09c7de90fce78027f284581a75a36f2f33cbfd29f5c187ede79373bd26e85ea90fc990b4aee314ee564bb12bb3f516e552fef29c9b1d3c2095bb6ebfb57d62
- SSDEEP
  
  1536:Xl7HZoy5fAzHB28pk9woOZT7+T/KRQcZArwXRQYR/Rj:XVCy5i/0m8/0QNwXeYVx
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2