6c849ca3354dae9cc5b6da18676e4813516a4c0be8c8b1f7b5a7dabdd062972a | Triage

Sharing

General

Target

6c849ca3354dae9cc5b6da18676e4813516a4c0be8c8b1f7b5a7dabdd062972a
Size

63KB
Sample

240725-2sk82szelk
MD5

96d8e0e92f026fe4682a3c19d4101168
SHA1

f29fed265e006cb26ec75e591d17c52a08f09bde
SHA256

6c849ca3354dae9cc5b6da18676e4813516a4c0be8c8b1f7b5a7dabdd062972a
SHA512

f76253748035f8b281d01356494803c9035ebf03707590734d905920c897aca1057247546b5e265b57c7d0b3bd6db3e77f47c8031126bb674d3c41acb05ae08f
SSDEEP

1536:ogXqzriDpOwAViovy9lfDf1+VSEn9rjDHE:ogXqzropOwAYovAfDf1oSk9DHE

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  6c849ca3354dae9cc5b6da18676e4813516a4c0be8c8b1f7b5a7dabdd062972a
- Size
  
  63KB
- MD5
  
  96d8e0e92f026fe4682a3c19d4101168
- SHA1
  
  f29fed265e006cb26ec75e591d17c52a08f09bde
- SHA256
  
  6c849ca3354dae9cc5b6da18676e4813516a4c0be8c8b1f7b5a7dabdd062972a
- SHA512
  
  f76253748035f8b281d01356494803c9035ebf03707590734d905920c897aca1057247546b5e265b57c7d0b3bd6db3e77f47c8031126bb674d3c41acb05ae08f
- SSDEEP
  
  1536:ogXqzriDpOwAViovy9lfDf1+VSEn9rjDHE:ogXqzropOwAYovAfDf1oSk9DHE
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence