930e0cb813d6de122bf1dec470ee4d4d9977d0dce5bba868aa4c7a6c239165b0 | Triage

Sharing

General

Target

bbfa6f26a26642c23f62ec01152448c0N.exe
Size

443KB
Sample

240721-nzbras1grj
MD5

bbfa6f26a26642c23f62ec01152448c0
SHA1

24eaae8d334a95ec1fedd930678a015f455a7bb7
SHA256

930e0cb813d6de122bf1dec470ee4d4d9977d0dce5bba868aa4c7a6c239165b0
SHA512

d1150b64bd9f4e20de5f9e6e4cb3c8b47d4e49750d558737d6a51775491b6ed738370117023d6e8af69f175557980d106e7435d6cc06b094bb1bd6bb31d45df4
SSDEEP

6144:LDCiuxS7w7zeXmRL13n4GAI13n4GAvs0PEpNF0pNO021fv13n4GA3uKjwszeXmOs:PuxSI1J1HJ1Uj+HiPj

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  bbfa6f26a26642c23f62ec01152448c0N.exe
- Size
  
  443KB
- MD5
  
  bbfa6f26a26642c23f62ec01152448c0
- SHA1
  
  24eaae8d334a95ec1fedd930678a015f455a7bb7
- SHA256
  
  930e0cb813d6de122bf1dec470ee4d4d9977d0dce5bba868aa4c7a6c239165b0
- SHA512
  
  d1150b64bd9f4e20de5f9e6e4cb3c8b47d4e49750d558737d6a51775491b6ed738370117023d6e8af69f175557980d106e7435d6cc06b094bb1bd6bb31d45df4
- SSDEEP
  
  6144:LDCiuxS7w7zeXmRL13n4GAI13n4GAvs0PEpNF0pNO021fv13n4GA3uKjwszeXmOs:PuxSI1J1HJ1Uj+HiPj
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2