b6957c5f70dc101d0475311e538ca67140a18a2901dcf9a69b077356c6e69453 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b6957c5f70dc101d0475311e538ca67140a18a2901dcf9a69b077356c6e69453
Size

610KB
Sample

240724-cetktsvekg
MD5

7df63bfd9708b5aa24757e71eddbba39
SHA1

37ccbe54dc2c8b8eba284679cd8d943822091935
SHA256

b6957c5f70dc101d0475311e538ca67140a18a2901dcf9a69b077356c6e69453
SHA512

42e56cd222a975e8ce8ab614059371dececb43a0cc3dccbb42bcaf23caf59ff50fe99d6431f4a71ff80f0aa4e7077f006b806efd62a90a638c6b819a44fc933e
SSDEEP

12288:smqslOKhwbVAiIXSzT08FSm864r0fW8wfiJg3oXH:smIKcZIyT7SzZ+Ko

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  b6957c5f70dc101d0475311e538ca67140a18a2901dcf9a69b077356c6e69453
- Size
  
  610KB
- MD5
  
  7df63bfd9708b5aa24757e71eddbba39
- SHA1
  
  37ccbe54dc2c8b8eba284679cd8d943822091935
- SHA256
  
  b6957c5f70dc101d0475311e538ca67140a18a2901dcf9a69b077356c6e69453
- SHA512
  
  42e56cd222a975e8ce8ab614059371dececb43a0cc3dccbb42bcaf23caf59ff50fe99d6431f4a71ff80f0aa4e7077f006b806efd62a90a638c6b819a44fc933e
- SSDEEP
  
  12288:smqslOKhwbVAiIXSzT08FSm864r0fW8wfiJg3oXH:smIKcZIyT7SzZ+Ko
Score

7^/10

discovery persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2