bd9d22298ac05891366f75e1b270a365d8fca21ae6329a04b7ed74b5cc26ff64 | Triage

Sharing

General

Target

bd9d22298ac05891366f75e1b270a365d8fca21ae6329a04b7ed74b5cc26ff64
Size

295KB
Sample

240909-cp3w9awhnk
MD5

0ed52ae42a398e1712b0735bbe3c32f8
SHA1

6f13fe9677ba89489db0293541ca835d84338662
SHA256

bd9d22298ac05891366f75e1b270a365d8fca21ae6329a04b7ed74b5cc26ff64
SHA512

1c32c5f501c31f94afe32067a7c80a0b926a82f43b2f49b549b0812bc6b9fcdeadff6674dad854d3b6b793cc9caddb5b0ed5a16374c47a5ac3f1cf531d30166b
SSDEEP

6144:F17tM6u41x4ot1PY1PRe19V+tbFOLM77OLY:Dp7umxr6fe0tsNM

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  bd9d22298ac05891366f75e1b270a365d8fca21ae6329a04b7ed74b5cc26ff64
- Size
  
  295KB
- MD5
  
  0ed52ae42a398e1712b0735bbe3c32f8
- SHA1
  
  6f13fe9677ba89489db0293541ca835d84338662
- SHA256
  
  bd9d22298ac05891366f75e1b270a365d8fca21ae6329a04b7ed74b5cc26ff64
- SHA512
  
  1c32c5f501c31f94afe32067a7c80a0b926a82f43b2f49b549b0812bc6b9fcdeadff6674dad854d3b6b793cc9caddb5b0ed5a16374c47a5ac3f1cf531d30166b
- SSDEEP
  
  6144:F17tM6u41x4ot1PY1PRe19V+tbFOLM77OLY:Dp7umxr6fe0tsNM
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence