f58ba7321d5241693dd8aac95d106f29b8049f5444e72f1e07ebc33cbea689a1 | Triage

Sharing

General

Target

f58ba7321d5241693dd8aac95d106f29b8049f5444e72f1e07ebc33cbea689a1
Size

96KB
Sample

240904-nbnqyszfqg
MD5

c8bcda76e402307786199033fefd1697
SHA1

bfbc5d400cd8eddcb25c6c58028db98c86282cd2
SHA256

f58ba7321d5241693dd8aac95d106f29b8049f5444e72f1e07ebc33cbea689a1
SHA512

8913f87938ecf1c69dd632f9bd780ea14626223fd6c49ba046a224f10867114124b00ec6063da0a65f80e81a58a4b546e5fa45c61f96d6e8e95f8e6b36856213
SSDEEP

1536:HdRyFUBQ7hB2ygaeNEX2dcM1WNwd5dBQ2mOs12LM86kaaAjWbjtKBvU:HdRyFUBy9zeNxcH2mOs12I86kaVwtCU

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  f58ba7321d5241693dd8aac95d106f29b8049f5444e72f1e07ebc33cbea689a1
- Size
  
  96KB
- MD5
  
  c8bcda76e402307786199033fefd1697
- SHA1
  
  bfbc5d400cd8eddcb25c6c58028db98c86282cd2
- SHA256
  
  f58ba7321d5241693dd8aac95d106f29b8049f5444e72f1e07ebc33cbea689a1
- SHA512
  
  8913f87938ecf1c69dd632f9bd780ea14626223fd6c49ba046a224f10867114124b00ec6063da0a65f80e81a58a4b546e5fa45c61f96d6e8e95f8e6b36856213
- SSDEEP
  
  1536:HdRyFUBQ7hB2ygaeNEX2dcM1WNwd5dBQ2mOs12LM86kaaAjWbjtKBvU:HdRyFUBy9zeNxcH2mOs12I86kaVwtCU
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence