ba1dd7a02a01098c68f4836371901e02024afdb18582b17152aea55068fc745f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ba1dd7a02a01098c68f4836371901e02024afdb18582b17152aea55068fc745f
Size

95KB
Sample

240914-bf2gdszbpf
MD5

710b55c0438538ea85f9c06d53d3e4ec
SHA1

ea8efac50f7afcee36afb8bcb796f06088d09ff8
SHA256

ba1dd7a02a01098c68f4836371901e02024afdb18582b17152aea55068fc745f
SHA512

50d0c9f8055610a9354691ef1a3da73df710ebc012c70e087dc3281a7be7ed98bb84f003feb8f28cc7e63028ba096fa36e46f7eae96ee7852b983b6f14b3e33c
SSDEEP

1536:ewkiQUKfYhG5qIQ91r3lkXYZuTVoxs9gGLuM3Zc4F9OM6bOLXi8PmCofGV:FLKfOXIY1RuTcsh9DrLXfzoeV

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  ba1dd7a02a01098c68f4836371901e02024afdb18582b17152aea55068fc745f
- Size
  
  95KB
- MD5
  
  710b55c0438538ea85f9c06d53d3e4ec
- SHA1
  
  ea8efac50f7afcee36afb8bcb796f06088d09ff8
- SHA256
  
  ba1dd7a02a01098c68f4836371901e02024afdb18582b17152aea55068fc745f
- SHA512
  
  50d0c9f8055610a9354691ef1a3da73df710ebc012c70e087dc3281a7be7ed98bb84f003feb8f28cc7e63028ba096fa36e46f7eae96ee7852b983b6f14b3e33c
- SSDEEP
  
  1536:ewkiQUKfYhG5qIQ91r3lkXYZuTVoxs9gGLuM3Zc4F9OM6bOLXi8PmCofGV:FLKfOXIY1RuTcsh9DrLXfzoeV
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence