ba11778507dc9ee12b6147ad0ccc1e2601157e0435d21994edf8d7898fcf0dda | Triage

Sharing

General

Target

ba11778507dc9ee12b6147ad0ccc1e2601157e0435d21994edf8d7898fcf0dda
Size

52KB
Sample

240913-b182zaxfnb
MD5

63042e15cc64a3c524bb133657ea4940
SHA1

f44d9f3bac57e5c126c74fbf4a5870731f570b6f
SHA256

ba11778507dc9ee12b6147ad0ccc1e2601157e0435d21994edf8d7898fcf0dda
SHA512

29b8d0033f7ec312e907fcb4d305ca5e3af6e0f52c186a14fabbf35b4bb27ed3c2b452bd170711165a82bb54143ff45fa951791dc861b06e6bc0c8fec4693c74
SSDEEP

768:AXBE35FwaqLia8JgOylB6a5lxuPkkfc3LUiR/1H5l:AXBEJpva8JNyl4a553

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  ba11778507dc9ee12b6147ad0ccc1e2601157e0435d21994edf8d7898fcf0dda
- Size
  
  52KB
- MD5
  
  63042e15cc64a3c524bb133657ea4940
- SHA1
  
  f44d9f3bac57e5c126c74fbf4a5870731f570b6f
- SHA256
  
  ba11778507dc9ee12b6147ad0ccc1e2601157e0435d21994edf8d7898fcf0dda
- SHA512
  
  29b8d0033f7ec312e907fcb4d305ca5e3af6e0f52c186a14fabbf35b4bb27ed3c2b452bd170711165a82bb54143ff45fa951791dc861b06e6bc0c8fec4693c74
- SSDEEP
  
  768:AXBE35FwaqLia8JgOylB6a5lxuPkkfc3LUiR/1H5l:AXBEJpva8JNyl4a553
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence