d6261291ee7b3c45b75da290d95c1dc1d57a20191bf07cd624718352ce753f4d | Triage

Sharing

General

Target

d6261291ee7b3c45b75da290d95c1dc1d57a20191bf07cd624718352ce753f4d
Size

82KB
Sample

240829-d6kmnstekk
MD5

276292a562c97dbb648f3c786e5f2550
SHA1

c901b409cb5dae67eb062265e5c265a50e9ac50b
SHA256

d6261291ee7b3c45b75da290d95c1dc1d57a20191bf07cd624718352ce753f4d
SHA512

7dd24007893d3a8d509ed30a840d19c6380eb9d3823ab806a0b6ad40b942713962c39f28470fa8f3858e7a7f7228c95e8e6241da50bb944c49966d8e7d1f9360
SSDEEP

1536:TV7s/mwKLf/2/nd5Dw7jP3KBZFRgOkmoqc2L76Fpm6+wDSmQFN6TiN1sJtvQu:TVg/mwKb0ZFJkaVkpm6tm7N6TO1SpD

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  d6261291ee7b3c45b75da290d95c1dc1d57a20191bf07cd624718352ce753f4d
- Size
  
  82KB
- MD5
  
  276292a562c97dbb648f3c786e5f2550
- SHA1
  
  c901b409cb5dae67eb062265e5c265a50e9ac50b
- SHA256
  
  d6261291ee7b3c45b75da290d95c1dc1d57a20191bf07cd624718352ce753f4d
- SHA512
  
  7dd24007893d3a8d509ed30a840d19c6380eb9d3823ab806a0b6ad40b942713962c39f28470fa8f3858e7a7f7228c95e8e6241da50bb944c49966d8e7d1f9360
- SSDEEP
  
  1536:TV7s/mwKLf/2/nd5Dw7jP3KBZFRgOkmoqc2L76Fpm6+wDSmQFN6TiN1sJtvQu:TVg/mwKb0ZFJkaVkpm6tm7N6TO1SpD
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence