8309265fc7d0b416080e54688eef9a6ddc96ea6e4410faf20b22b300b0582321 | Triage

Sharing

General

Target

bd6fe895da78d99ed08306cd239001b0N.exe
Size

276KB
Sample

240825-wqck8sxane
MD5

bd6fe895da78d99ed08306cd239001b0
SHA1

ef76a1466afd5bd939ddb5832111343fc6de3478
SHA256

8309265fc7d0b416080e54688eef9a6ddc96ea6e4410faf20b22b300b0582321
SHA512

bf2ad8269c405e057aad1a4429fb6bd2a7c8973e8e530d3dcd66a8a87f4c8bd8682ed6fa17c3b4114734d0c79df3f315713ff9116ad4cf00a777a9ead8d787d7
SSDEEP

6144:zH2wXdShrGdWZHEFJ7aWN1rtMsQBOSGaF+:z2KSm2HEGWN1RMs1S7

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  bd6fe895da78d99ed08306cd239001b0N.exe
- Size
  
  276KB
- MD5
  
  bd6fe895da78d99ed08306cd239001b0
- SHA1
  
  ef76a1466afd5bd939ddb5832111343fc6de3478
- SHA256
  
  8309265fc7d0b416080e54688eef9a6ddc96ea6e4410faf20b22b300b0582321
- SHA512
  
  bf2ad8269c405e057aad1a4429fb6bd2a7c8973e8e530d3dcd66a8a87f4c8bd8682ed6fa17c3b4114734d0c79df3f315713ff9116ad4cf00a777a9ead8d787d7
- SSDEEP
  
  6144:zH2wXdShrGdWZHEFJ7aWN1rtMsQBOSGaF+:z2KSm2HEGWN1RMs1S7
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence