0f553f51c5b8627470054dcf7accd893789599d95191a06d33887dc2ccb8b672 | Triage

Sharing

General

Target

0f553f51c5b8627470054dcf7accd893789599d95191a06d33887dc2ccb8b672
Size

45KB
Sample

240811-xbn66ascpm
MD5

b51b3f8c00958534d6d72f50ee4fc4e9
SHA1

bfbe9e9562c28a89e4f5fb85a11e8ad268d56395
SHA256

0f553f51c5b8627470054dcf7accd893789599d95191a06d33887dc2ccb8b672
SHA512

7b769b33cfccfeb56311fc05376e0f586e776912c0d9c4a4c276da126c2eef33a1e8e39289adc57571a0e627f3d68213a53222545fcc2347e7ef89d69eb09c23
SSDEEP

768:kHmDhjU4ghBag5EE1qowcAJX+4FjhO/J1/1H5z:kHw6Zj5EYqowcAN+4FjhQJv9

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  0f553f51c5b8627470054dcf7accd893789599d95191a06d33887dc2ccb8b672
- Size
  
  45KB
- MD5
  
  b51b3f8c00958534d6d72f50ee4fc4e9
- SHA1
  
  bfbe9e9562c28a89e4f5fb85a11e8ad268d56395
- SHA256
  
  0f553f51c5b8627470054dcf7accd893789599d95191a06d33887dc2ccb8b672
- SHA512
  
  7b769b33cfccfeb56311fc05376e0f586e776912c0d9c4a4c276da126c2eef33a1e8e39289adc57571a0e627f3d68213a53222545fcc2347e7ef89d69eb09c23
- SSDEEP
  
  768:kHmDhjU4ghBag5EE1qowcAJX+4FjhO/J1/1H5z:kHw6Zj5EYqowcAN+4FjhQJv9
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence