1eb16319a1146b436346c4f632c43f7939517c90d91c138e97850905b9e874b7 | Triage

Sharing

General

Target

d385158bc5a82cfc70707bef08cb90b0N
Size

85KB
Sample

240908-blff4syckd
MD5

d385158bc5a82cfc70707bef08cb90b0
SHA1

de15497ed64ac8e65c945d5e64d53b9bf1c1d2d5
SHA256

1eb16319a1146b436346c4f632c43f7939517c90d91c138e97850905b9e874b7
SHA512

2eb498587c1c4bbd714b78981af0b2b18e24802fe11161e134ab54bdfe451a97b20b682e69488a5d34e473d8fd336057c48f57c03efe53f61f02555e5fc0a672
SSDEEP

1536:iryIQAjm9Ozj+tNeoWqpjPnA2LH7aMQ262AjCsQ2PCZZrqOlNfVSLUK+:irEOzytcHyjvxH7aMQH2qC7ZQOlzSLUN

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  d385158bc5a82cfc70707bef08cb90b0N
- Size
  
  85KB
- MD5
  
  d385158bc5a82cfc70707bef08cb90b0
- SHA1
  
  de15497ed64ac8e65c945d5e64d53b9bf1c1d2d5
- SHA256
  
  1eb16319a1146b436346c4f632c43f7939517c90d91c138e97850905b9e874b7
- SHA512
  
  2eb498587c1c4bbd714b78981af0b2b18e24802fe11161e134ab54bdfe451a97b20b682e69488a5d34e473d8fd336057c48f57c03efe53f61f02555e5fc0a672
- SSDEEP
  
  1536:iryIQAjm9Ozj+tNeoWqpjPnA2LH7aMQ262AjCsQ2PCZZrqOlNfVSLUK+:irEOzytcHyjvxH7aMQH2qC7ZQOlzSLUN
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence