13bd758dbee72974663ecbc18a7b536bb8419023ca7a321ee7c9a67ad414de10 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

13bd758dbee72974663ecbc18a7b536bb8419023ca7a321ee7c9a67ad414de10
Size

559KB
Sample

240705-xpbg8atbnr
MD5

ad9749885d3aa5915b2e5ac8bd30ee5f
SHA1

f8b37c3a20d6682126c3e488df00e02ac3eb2c2e
SHA256

13bd758dbee72974663ecbc18a7b536bb8419023ca7a321ee7c9a67ad414de10
SHA512

f3919b8f2a483ce84d5525dd23ad408b8af714ace06b26f06bbd092f6915b9977ef725fcbb4849409988402a5a7622a66997c45f5b64218b7981f366f62b01b6
SSDEEP

6144:7xPP7hVz5CPXbo92ynnZlVrtv35CPXbo92ynn8sbeWD2/wH5CPXbo92ynnZlVrtS:79hNFHRFbe7QFHRFbe73

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  13bd758dbee72974663ecbc18a7b536bb8419023ca7a321ee7c9a67ad414de10
- Size
  
  559KB
- MD5
  
  ad9749885d3aa5915b2e5ac8bd30ee5f
- SHA1
  
  f8b37c3a20d6682126c3e488df00e02ac3eb2c2e
- SHA256
  
  13bd758dbee72974663ecbc18a7b536bb8419023ca7a321ee7c9a67ad414de10
- SHA512
  
  f3919b8f2a483ce84d5525dd23ad408b8af714ace06b26f06bbd092f6915b9977ef725fcbb4849409988402a5a7622a66997c45f5b64218b7981f366f62b01b6
- SSDEEP
  
  6144:7xPP7hVz5CPXbo92ynnZlVrtv35CPXbo92ynn8sbeWD2/wH5CPXbo92ynnZlVrtS:79hNFHRFbe7QFHRFbe73
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2