611bf802766c2c190c57f3c4f977f225f9b445f3c894d5ff1e6593187ed1e6fd | Triage

Sharing

General

Target

611bf802766c2c190c57f3c4f977f225f9b445f3c894d5ff1e6593187ed1e6fd
Size

85KB
Sample

240722-14zeda1dmf
MD5

629b970efcb4ce36f887c8feaadcd1cf
SHA1

aa5a324926d9de3a56bf43d54045b5737c20e5f1
SHA256

611bf802766c2c190c57f3c4f977f225f9b445f3c894d5ff1e6593187ed1e6fd
SHA512

2f03b44645c9a9abf10717e3e8cb0d7fc7c8c469fc18fb0c941aca6f327cd7e09da81bb4c21a90bc3f6b501b4ec25df8782f261a1f87cdc8e070955562e7db21
SSDEEP

1536:rTu2mEEFWMUm2pnkDOB6fyICXu2LHWMQ262AjCsQ2PCZZrqOlNfVSLUK+:fu2mEEFWMUL3BCyICDHWMQH2qC7ZQOl3

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  611bf802766c2c190c57f3c4f977f225f9b445f3c894d5ff1e6593187ed1e6fd
- Size
  
  85KB
- MD5
  
  629b970efcb4ce36f887c8feaadcd1cf
- SHA1
  
  aa5a324926d9de3a56bf43d54045b5737c20e5f1
- SHA256
  
  611bf802766c2c190c57f3c4f977f225f9b445f3c894d5ff1e6593187ed1e6fd
- SHA512
  
  2f03b44645c9a9abf10717e3e8cb0d7fc7c8c469fc18fb0c941aca6f327cd7e09da81bb4c21a90bc3f6b501b4ec25df8782f261a1f87cdc8e070955562e7db21
- SSDEEP
  
  1536:rTu2mEEFWMUm2pnkDOB6fyICXu2LHWMQ262AjCsQ2PCZZrqOlNfVSLUK+:fu2mEEFWMUL3BCyICDHWMQH2qC7ZQOl3
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2