731322b300479fe1e35a50e7069f504c2c4b359a000b29ea7500c9bcfab7a65b | Triage

Sharing

General

Target

BkavPro.exe
Size

760KB
Sample

240810-26rb8axdpb
MD5

abf09a2221c6b58aca0aadba05f3cd56
SHA1

fa6969642f333241c89971089b63e4ff03aac42f
SHA256

731322b300479fe1e35a50e7069f504c2c4b359a000b29ea7500c9bcfab7a65b
SHA512

64b1f64daed76832202576fcd314b39575e0dbca461a41c67afac8ccc6056868456217a06df8201653e7ac3282f88e658bf5389cd97a914250b1c5774f27776f
SSDEEP

12288:OzAKNddaW7znYhASli1aRpsZIhBzLm6sZyGywn4N5AbH/6lRGi+jCakR:OzhdPkhASjsZKJm6sZyGyPXAbfmRGiA2

Score

8^/10

discovery persistence

Malware Config

Targets

- Target
  
  BkavPro.exe
- Size
  
  760KB
- MD5
  
  abf09a2221c6b58aca0aadba05f3cd56
- SHA1
  
  fa6969642f333241c89971089b63e4ff03aac42f
- SHA256
  
  731322b300479fe1e35a50e7069f504c2c4b359a000b29ea7500c9bcfab7a65b
- SHA512
  
  64b1f64daed76832202576fcd314b39575e0dbca461a41c67afac8ccc6056868456217a06df8201653e7ac3282f88e658bf5389cd97a914250b1c5774f27776f
- SSDEEP
  
  12288:OzAKNddaW7znYhASli1aRpsZIhBzLm6sZyGywn4N5AbH/6lRGi+jCakR:OzhdPkhASjsZKJm6sZyGyPXAbfmRGiA2
Score

8^/10

discovery persistence
- Drops file in Drivers directory
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence