f6190b1beca8cb6868c5e303d9f8ab95f43b237a8bde5aef4492b82e1729813f | Triage

Sharing

General

Target

f6190b1beca8cb6868c5e303d9f8ab95f43b237a8bde5aef4492b82e1729813f
Size

97KB
Sample

240903-pr49baxhnd
MD5

e92c2e47b1d2a707851e87787f5b6acd
SHA1

7266313f330a4a61eb09a544bbe53bb9eab2240a
SHA256

f6190b1beca8cb6868c5e303d9f8ab95f43b237a8bde5aef4492b82e1729813f
SHA512

472057e93a3a66d9bf0010b37440026d67c8ab0be448d0e3809a6de877b9b625c35a3dd4a3901f56fe6a9b6e9ae71fe68702f0aabb6092124e782cf68940a676
SSDEEP

1536:VJS3sConTUNLFrWG4AGqpN38TLxoHqcO+CTVERbHvJXeYZ6:VccTQ4AZAGK2RbPJXeK6

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  f6190b1beca8cb6868c5e303d9f8ab95f43b237a8bde5aef4492b82e1729813f
- Size
  
  97KB
- MD5
  
  e92c2e47b1d2a707851e87787f5b6acd
- SHA1
  
  7266313f330a4a61eb09a544bbe53bb9eab2240a
- SHA256
  
  f6190b1beca8cb6868c5e303d9f8ab95f43b237a8bde5aef4492b82e1729813f
- SHA512
  
  472057e93a3a66d9bf0010b37440026d67c8ab0be448d0e3809a6de877b9b625c35a3dd4a3901f56fe6a9b6e9ae71fe68702f0aabb6092124e782cf68940a676
- SSDEEP
  
  1536:VJS3sConTUNLFrWG4AGqpN38TLxoHqcO+CTVERbHvJXeYZ6:VccTQ4AZAGK2RbPJXeK6
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence