823ca07a0b87b794bd828d14c83df6ca656a84c9da8c73b5768aa015e1dafdf9 | Triage

Sharing

General

Target

823ca07a0b87b794bd828d14c83df6ca656a84c9da8c73b5768aa015e1dafdf9
Size

59KB
Sample

240825-bbqjbszbne
MD5

bd7d0d65161fb5c6a586c5c5ba7c1413
SHA1

3043236e15f3befc751df813328d5468e0ea894c
SHA256

823ca07a0b87b794bd828d14c83df6ca656a84c9da8c73b5768aa015e1dafdf9
SHA512

c9f407d95745ee4965874088e0f4398f6dc795d879f64b0033651e01dddfc44318f4399551d0e8236c9cb0752d0ae620764423b3ed812c3fb499eb26b27f5e04
SSDEEP

768:1l54s0wufT8gN7BU8WjbeRI8Y1A//4SMFzzetzMGZ/1H5Q5nf1fZMEBFELvkVgFa:1tY7Bi6I8Y1K4SMBWZmNCyVso

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  823ca07a0b87b794bd828d14c83df6ca656a84c9da8c73b5768aa015e1dafdf9
- Size
  
  59KB
- MD5
  
  bd7d0d65161fb5c6a586c5c5ba7c1413
- SHA1
  
  3043236e15f3befc751df813328d5468e0ea894c
- SHA256
  
  823ca07a0b87b794bd828d14c83df6ca656a84c9da8c73b5768aa015e1dafdf9
- SHA512
  
  c9f407d95745ee4965874088e0f4398f6dc795d879f64b0033651e01dddfc44318f4399551d0e8236c9cb0752d0ae620764423b3ed812c3fb499eb26b27f5e04
- SSDEEP
  
  768:1l54s0wufT8gN7BU8WjbeRI8Y1A//4SMFzzetzMGZ/1H5Q5nf1fZMEBFELvkVgFa:1tY7Bi6I8Y1K4SMBWZmNCyVso
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence