b0e11f9a2a47fe23616303a26194fc561faee4feebf9422efe9bbf56dd79b22b | Triage

Sharing

General

Target

b0e11f9a2a47fe23616303a26194fc561faee4feebf9422efe9bbf56dd79b22b
Size

96KB
Sample

240824-bk5dvazbmq
MD5

10b20493a2e1fc88062758fbc042ffbc
SHA1

65555e1a8378760d7051ba7df2266b7b01817447
SHA256

b0e11f9a2a47fe23616303a26194fc561faee4feebf9422efe9bbf56dd79b22b
SHA512

c95f0b6fee8fd95adfe0eab5093433b5c3da0b41a377ef4f2f15581ddcfd5f6d4727ff4549c87a98877fc56f968f0a6407868786a530b6cda63e4d266945481a
SSDEEP

1536:ifujY4I4da1Qtz+HaYrk5Jtk/26R/BOmsCMy0QiLiizHNQNdq:ifAY4I4IQEHM6R5OmsCMyELiAHONdq

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  b0e11f9a2a47fe23616303a26194fc561faee4feebf9422efe9bbf56dd79b22b
- Size
  
  96KB
- MD5
  
  10b20493a2e1fc88062758fbc042ffbc
- SHA1
  
  65555e1a8378760d7051ba7df2266b7b01817447
- SHA256
  
  b0e11f9a2a47fe23616303a26194fc561faee4feebf9422efe9bbf56dd79b22b
- SHA512
  
  c95f0b6fee8fd95adfe0eab5093433b5c3da0b41a377ef4f2f15581ddcfd5f6d4727ff4549c87a98877fc56f968f0a6407868786a530b6cda63e4d266945481a
- SSDEEP
  
  1536:ifujY4I4da1Qtz+HaYrk5Jtk/26R/BOmsCMy0QiLiizHNQNdq:ifAY4I4IQEHM6R5OmsCMyELiAHONdq
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence