bab3d853dad54afacfa2515e196720038f1b943bc2a69fe1a88c759d36ebc0f3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bab3d853dad54afacfa2515e196720038f1b943bc2a69fe1a88c759d36ebc0f3
Size

395KB
Sample

240808-c3t69syckp
MD5

6752189a9010afc8ff8304c8f279ea95
SHA1

b24f370e26a02d2de9942ae201203beeb40cfe4d
SHA256

bab3d853dad54afacfa2515e196720038f1b943bc2a69fe1a88c759d36ebc0f3
SHA512

38a358fb2c74145ad70ec5319dd6d5d895c954be0e9019182533a471495824ad210622cce4d3b268b47bd6db3f35782377bab96edd0f7eab8285f2e8074ec2dd
SSDEEP

6144:4jlYKRF/LReWAsUyuR02CRuSmTSXG9UQDsPuSixvgd2PtZN8ihrxDik0z2/C7eV:4jauDReWESSSysmSsDik0q

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  bab3d853dad54afacfa2515e196720038f1b943bc2a69fe1a88c759d36ebc0f3
- Size
  
  395KB
- MD5
  
  6752189a9010afc8ff8304c8f279ea95
- SHA1
  
  b24f370e26a02d2de9942ae201203beeb40cfe4d
- SHA256
  
  bab3d853dad54afacfa2515e196720038f1b943bc2a69fe1a88c759d36ebc0f3
- SHA512
  
  38a358fb2c74145ad70ec5319dd6d5d895c954be0e9019182533a471495824ad210622cce4d3b268b47bd6db3f35782377bab96edd0f7eab8285f2e8074ec2dd
- SSDEEP
  
  6144:4jlYKRF/LReWAsUyuR02CRuSmTSXG9UQDsPuSixvgd2PtZN8ihrxDik0z2/C7eV:4jauDReWESSSysmSsDik0q
Score

7^/10

discovery persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence