b6bed87e6c6327c26c51e1b6e6fff427fc8cd81bb5750c7c9635bfb717f58f68 | Triage

Sharing

General

Target

b6bed87e6c6327c26c51e1b6e6fff427fc8cd81bb5750c7c9635bfb717f58f68
Size

96KB
Sample

240913-bwcszawhlj
MD5

7f5533d150f2c4c1f42f5cb9ff5e267c
SHA1

3e662ca0d3e5518a0626e7a942ee4978f294f08f
SHA256

b6bed87e6c6327c26c51e1b6e6fff427fc8cd81bb5750c7c9635bfb717f58f68
SHA512

8be25cd4cc7eb0af0f5a5af638fa4c0b0580f1356f3d50007cb495b6044a18e97808600085a225736f18e8d6cfb2d792ffd0ddfbb7801fd1c2b33fb0254ce8c6
SSDEEP

1536:8qx3aglO14Um2RQVwEzJ/J74GJBmkqj2Lk1ZPXuhiTMuZXGTIVefVDkryyAyqX:8qx3a+m4UhRQDn4GbJaZPXuhuXGQmVDf

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  b6bed87e6c6327c26c51e1b6e6fff427fc8cd81bb5750c7c9635bfb717f58f68
- Size
  
  96KB
- MD5
  
  7f5533d150f2c4c1f42f5cb9ff5e267c
- SHA1
  
  3e662ca0d3e5518a0626e7a942ee4978f294f08f
- SHA256
  
  b6bed87e6c6327c26c51e1b6e6fff427fc8cd81bb5750c7c9635bfb717f58f68
- SHA512
  
  8be25cd4cc7eb0af0f5a5af638fa4c0b0580f1356f3d50007cb495b6044a18e97808600085a225736f18e8d6cfb2d792ffd0ddfbb7801fd1c2b33fb0254ce8c6
- SSDEEP
  
  1536:8qx3aglO14Um2RQVwEzJ/J74GJBmkqj2Lk1ZPXuhiTMuZXGTIVefVDkryyAyqX:8qx3a+m4UhRQDn4GbJaZPXuhuXGQmVDf
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence