bdbea20dcef3d407713b5cbfc4213f7ad72790a9c7bf2d1807933ae797a7cbbc | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e6a87bcc81005f6151848bd5f155d230N.exe
Size

96KB
Sample

240825-rbbm6sxhjb
MD5

e6a87bcc81005f6151848bd5f155d230
SHA1

b9114ba525a49f5ef802d8a68bef4a653044e045
SHA256

bdbea20dcef3d407713b5cbfc4213f7ad72790a9c7bf2d1807933ae797a7cbbc
SHA512

cfce4a834794b2ae7c9ee353c00e12efdb43c49d6cbcfe45d77dba509154ebce66d6985e21faf8ae386a54d1e4d42ca96104b31dd80f8b3a89d5e19c18058cb6
SSDEEP

1536:zHUm5Enk9L8rQRA2iRbVPdnpT36pdinCzoOCduV9jojTIvjr:LUm5EnML2QS2iRbVPbe/PdCd69jc0v

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  e6a87bcc81005f6151848bd5f155d230N.exe
- Size
  
  96KB
- MD5
  
  e6a87bcc81005f6151848bd5f155d230
- SHA1
  
  b9114ba525a49f5ef802d8a68bef4a653044e045
- SHA256
  
  bdbea20dcef3d407713b5cbfc4213f7ad72790a9c7bf2d1807933ae797a7cbbc
- SHA512
  
  cfce4a834794b2ae7c9ee353c00e12efdb43c49d6cbcfe45d77dba509154ebce66d6985e21faf8ae386a54d1e4d42ca96104b31dd80f8b3a89d5e19c18058cb6
- SSDEEP
  
  1536:zHUm5Enk9L8rQRA2iRbVPdnpT36pdinCzoOCduV9jojTIvjr:LUm5EnML2QS2iRbVPbe/PdCd69jc0v
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence