bd3cc3b1a93d8b57631ed6cad344badf7e28ab6c7afe7b66dc3c75866813628d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6d610dab2e76e98aed7f94e1c26d6a30N.exe
Size

302KB
Sample

240822-rl6lastgkk
MD5

6d610dab2e76e98aed7f94e1c26d6a30
SHA1

283386c966d3d9a48a68b8a727918900904e7afa
SHA256

bd3cc3b1a93d8b57631ed6cad344badf7e28ab6c7afe7b66dc3c75866813628d
SHA512

05013bb822a5b76bf931b78bc8649a04a0abf3e154f99f6b9f700b44bea803d12e34cf6e92d350748bda8f9d4dfec2082a51fd5bbf327265bf7712a8e21b7131
SSDEEP

6144:Zsvlbnv7FL7GNlighD4lTjZXvEQo9dfEORRAgnIlY1:K9bvRv8lXhuT9XvEhdfEmwlY1

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  6d610dab2e76e98aed7f94e1c26d6a30N.exe
- Size
  
  302KB
- MD5
  
  6d610dab2e76e98aed7f94e1c26d6a30
- SHA1
  
  283386c966d3d9a48a68b8a727918900904e7afa
- SHA256
  
  bd3cc3b1a93d8b57631ed6cad344badf7e28ab6c7afe7b66dc3c75866813628d
- SHA512
  
  05013bb822a5b76bf931b78bc8649a04a0abf3e154f99f6b9f700b44bea803d12e34cf6e92d350748bda8f9d4dfec2082a51fd5bbf327265bf7712a8e21b7131
- SSDEEP
  
  6144:Zsvlbnv7FL7GNlighD4lTjZXvEQo9dfEORRAgnIlY1:K9bvRv8lXhuT9XvEhdfEmwlY1
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence