605c952fdc9338ea39afb69bb36f24bca618dcb972f4b40744f1d045a5896175 | Triage

Sharing

General

Target

605c952fdc9338ea39afb69bb36f24bca618dcb972f4b40744f1d045a5896175
Size

71KB
Sample

240722-13s6za1cpa
MD5

db6b03d0b889224f19f34d3cba2aa643
SHA1

a438b40f9b91b6848aebd03105d93a2402afe7a5
SHA256

605c952fdc9338ea39afb69bb36f24bca618dcb972f4b40744f1d045a5896175
SHA512

6e28a12e61cb546dbf1a58b422d7567beec55a82e18a7d8461056a9d99d3c06b2476c5818f0a09b8c36723cef6801901b37ece3f000e74ab25d56a39cbad8414
SSDEEP

1536:PXk4feTnGuRQPIsLWuqU8Ws0L0w+GBMZ5p21jvzpuzCRQdDbEyRCRRRoR4Rk:PXkr/awQqUs0L0w+MMuuzCexEy032ya

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  605c952fdc9338ea39afb69bb36f24bca618dcb972f4b40744f1d045a5896175
- Size
  
  71KB
- MD5
  
  db6b03d0b889224f19f34d3cba2aa643
- SHA1
  
  a438b40f9b91b6848aebd03105d93a2402afe7a5
- SHA256
  
  605c952fdc9338ea39afb69bb36f24bca618dcb972f4b40744f1d045a5896175
- SHA512
  
  6e28a12e61cb546dbf1a58b422d7567beec55a82e18a7d8461056a9d99d3c06b2476c5818f0a09b8c36723cef6801901b37ece3f000e74ab25d56a39cbad8414
- SSDEEP
  
  1536:PXk4feTnGuRQPIsLWuqU8Ws0L0w+GBMZ5p21jvzpuzCRQdDbEyRCRRRoR4Rk:PXkr/awQqUs0L0w+MMuuzCexEy032ya
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2