6e4b02f3a0af75c03e78b8e588814b3ad6ab4137148ddf35b22ca675cc4f65b6 | Triage

Sharing

General

Target

6e4b02f3a0af75c03e78b8e588814b3ad6ab4137148ddf35b22ca675cc4f65b6
Size

80KB
Sample

240810-2lhjkswdmb
MD5

62af170a7529156c089b8bc54ee13bda
SHA1

a53cf7742f3ed18e6826bf86cd0d620df15f299f
SHA256

6e4b02f3a0af75c03e78b8e588814b3ad6ab4137148ddf35b22ca675cc4f65b6
SHA512

6cc92793547fa52beb7f1ea3cd686e00787679edbd82c93f5b3e4f6787c9f5c972313689a7602b361689265d3a622e5e9b9f82e8f0914b9239ffb0a7afb40e74
SSDEEP

1536:kW9n23U2InzOrwuO/HWjNSfcwDsM2gGDgHFeJuqnhCN:V9mUnzujhSfNXOuFeJLCN

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  6e4b02f3a0af75c03e78b8e588814b3ad6ab4137148ddf35b22ca675cc4f65b6
- Size
  
  80KB
- MD5
  
  62af170a7529156c089b8bc54ee13bda
- SHA1
  
  a53cf7742f3ed18e6826bf86cd0d620df15f299f
- SHA256
  
  6e4b02f3a0af75c03e78b8e588814b3ad6ab4137148ddf35b22ca675cc4f65b6
- SHA512
  
  6cc92793547fa52beb7f1ea3cd686e00787679edbd82c93f5b3e4f6787c9f5c972313689a7602b361689265d3a622e5e9b9f82e8f0914b9239ffb0a7afb40e74
- SSDEEP
  
  1536:kW9n23U2InzOrwuO/HWjNSfcwDsM2gGDgHFeJuqnhCN:V9mUnzujhSfNXOuFeJLCN
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence