a6b6ffa02186731033f43edba2bc3f3e3c052a301691217d4a718fb71dd25d2b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a6b6ffa02186731033f43edba2bc3f3e3c052a301691217d4a718fb71dd25d2b
Size

45KB
Sample

240819-3lctrswbrq
MD5

7b8ed529f0ae2d40a3bec22ff2d71360
SHA1

2bd56872b79e60bf850a73b1a75e2c4b154a964f
SHA256

a6b6ffa02186731033f43edba2bc3f3e3c052a301691217d4a718fb71dd25d2b
SHA512

5a7db9c484050b5f7318dbcc7e6bb348b3b2fd3eca1888de807b348fb388fa6c22fd1f7c1c398b613bf6b3950b98350e2669f10521f100e4cd492ba6ba1fa570
SSDEEP

768:cXR9OJ3d6dBmqAsr4bxPpxahkNrqPeynljKvVQWn/1H5M:iSJ3d6dIqJsxBfq/svV5

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  a6b6ffa02186731033f43edba2bc3f3e3c052a301691217d4a718fb71dd25d2b
- Size
  
  45KB
- MD5
  
  7b8ed529f0ae2d40a3bec22ff2d71360
- SHA1
  
  2bd56872b79e60bf850a73b1a75e2c4b154a964f
- SHA256
  
  a6b6ffa02186731033f43edba2bc3f3e3c052a301691217d4a718fb71dd25d2b
- SHA512
  
  5a7db9c484050b5f7318dbcc7e6bb348b3b2fd3eca1888de807b348fb388fa6c22fd1f7c1c398b613bf6b3950b98350e2669f10521f100e4cd492ba6ba1fa570
- SSDEEP
  
  768:cXR9OJ3d6dBmqAsr4bxPpxahkNrqPeynljKvVQWn/1H5M:iSJ3d6dIqJsxBfq/svV5
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence