cce4b6fa87b270dfb6315311846155d21007a6a2957709297bccc34efcb7d4ee | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ba1b8f70cd1024e38856c33695e70790N
Size

181KB
Sample

240908-hd1weatfkb
MD5

ba1b8f70cd1024e38856c33695e70790
SHA1

50d400315034bcd0d22bb57aba4054e42421fa65
SHA256

cce4b6fa87b270dfb6315311846155d21007a6a2957709297bccc34efcb7d4ee
SHA512

f8e9464e857ea85c0ba4e130abe3c1d4166871d8f20d131d2ba8ac396798f9ee8f0f8bb24cfdbb9b5110cfccba36a3624d67cc6a9017a9ff07a0d4cc3bdb15e3
SSDEEP

3072:eR0bYG+qZQGDrFDHZtOgxadeMZCTgDrFDHZtOg:eeDiW5tToZM45tT

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  ba1b8f70cd1024e38856c33695e70790N
- Size
  
  181KB
- MD5
  
  ba1b8f70cd1024e38856c33695e70790
- SHA1
  
  50d400315034bcd0d22bb57aba4054e42421fa65
- SHA256
  
  cce4b6fa87b270dfb6315311846155d21007a6a2957709297bccc34efcb7d4ee
- SHA512
  
  f8e9464e857ea85c0ba4e130abe3c1d4166871d8f20d131d2ba8ac396798f9ee8f0f8bb24cfdbb9b5110cfccba36a3624d67cc6a9017a9ff07a0d4cc3bdb15e3
- SSDEEP
  
  3072:eR0bYG+qZQGDrFDHZtOgxadeMZCTgDrFDHZtOg:eeDiW5tToZM45tT
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence