6310f5e4964e21452fcc3ff695463ff89b6fd5bb49814bc1e1d7879377c1e4e2 | Triage

Sharing

General

Target

6310f5e4964e21452fcc3ff695463ff89b6fd5bb49814bc1e1d7879377c1e4e2
Size

64KB
Sample

240909-18ycwavfjg
MD5

c44df15dc2ce7e04dd9252921c13060d
SHA1

47cb0acbeb36dec90d26ae76d49ac7a8fc786fc1
SHA256

6310f5e4964e21452fcc3ff695463ff89b6fd5bb49814bc1e1d7879377c1e4e2
SHA512

3837b1feb04ed06fd0aa9ba9648a5c5886bd40dc962e460339e0392c239e39f9acb2dad09b4ae289b00cb5c2c18b57c9ddb8fdcb94cac67b391a59e0a61c23e2
SSDEEP

1536:Mmq0M30HVudWXIgdpCmdLUtUWyEIrPFW2iwTbW:NM3XpgdQ49XVFW2VTbW

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  6310f5e4964e21452fcc3ff695463ff89b6fd5bb49814bc1e1d7879377c1e4e2
- Size
  
  64KB
- MD5
  
  c44df15dc2ce7e04dd9252921c13060d
- SHA1
  
  47cb0acbeb36dec90d26ae76d49ac7a8fc786fc1
- SHA256
  
  6310f5e4964e21452fcc3ff695463ff89b6fd5bb49814bc1e1d7879377c1e4e2
- SHA512
  
  3837b1feb04ed06fd0aa9ba9648a5c5886bd40dc962e460339e0392c239e39f9acb2dad09b4ae289b00cb5c2c18b57c9ddb8fdcb94cac67b391a59e0a61c23e2
- SSDEEP
  
  1536:Mmq0M30HVudWXIgdpCmdLUtUWyEIrPFW2iwTbW:NM3XpgdQ49XVFW2VTbW
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence