e91f8a147dc267c8fcbf18e488491370f38c08e8e3a3f1030926592d24a96756 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c6e86e65d8d24144b22d351405101b60N.exe
Size

465KB
Sample

240721-p6k4zs1gma
MD5

c6e86e65d8d24144b22d351405101b60
SHA1

6e63cee1d71c6a48e146a075f1ae097322fb8d89
SHA256

e91f8a147dc267c8fcbf18e488491370f38c08e8e3a3f1030926592d24a96756
SHA512

f92e00d2dbcce5c4c9c5109b27fc39072b96c708da10b3523066e72c59594e84cb064fa3647c8d352c1b09140928209fe68e8bf5c1898508577f203237e18ef1
SSDEEP

6144:nJcZh+Lu7Y0PQ///NR5fKr2n0MO3LPlkUCmVs5bPQ///NR5frdQt383PQ///NR5R:kh+Lu7+/Ng1/Nmr/Ng1/NSf

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  c6e86e65d8d24144b22d351405101b60N.exe
- Size
  
  465KB
- MD5
  
  c6e86e65d8d24144b22d351405101b60
- SHA1
  
  6e63cee1d71c6a48e146a075f1ae097322fb8d89
- SHA256
  
  e91f8a147dc267c8fcbf18e488491370f38c08e8e3a3f1030926592d24a96756
- SHA512
  
  f92e00d2dbcce5c4c9c5109b27fc39072b96c708da10b3523066e72c59594e84cb064fa3647c8d352c1b09140928209fe68e8bf5c1898508577f203237e18ef1
- SSDEEP
  
  6144:nJcZh+Lu7Y0PQ///NR5fKr2n0MO3LPlkUCmVs5bPQ///NR5frdQt383PQ///NR5R:kh+Lu7+/Ng1/Nmr/Ng1/NSf
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2