bdf53112f69c8c8a506c09b67155d774e32af78491e0a39d5b79888b97be7e4a | Triage

Sharing

General

Target

bdf53112f69c8c8a506c09b67155d774e32af78491e0a39d5b79888b97be7e4a
Size

93KB
Sample

240915-bp4ywayajh
MD5

49f09217b5b927727ca616b21efd0c59
SHA1

ba6e0a34666d451607799f18ba8bdd971967c66f
SHA256

bdf53112f69c8c8a506c09b67155d774e32af78491e0a39d5b79888b97be7e4a
SHA512

6143555f6214e4eb4e867237aaa1bd7d4c2af8b7176dff58d27a12b467e99553b5868fa145f1d299fd1c23b695f46deb464ecf00422d2b2acef336a73e9e0f92
SSDEEP

1536:NlfiE0qEMrxUETkqI3/LPp2x+V64yPNRp6Yk252saMiwihtIbbpkp:vv0qfrc/LPpUKUNX/52dMiwaIbbpkp

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  bdf53112f69c8c8a506c09b67155d774e32af78491e0a39d5b79888b97be7e4a
- Size
  
  93KB
- MD5
  
  49f09217b5b927727ca616b21efd0c59
- SHA1
  
  ba6e0a34666d451607799f18ba8bdd971967c66f
- SHA256
  
  bdf53112f69c8c8a506c09b67155d774e32af78491e0a39d5b79888b97be7e4a
- SHA512
  
  6143555f6214e4eb4e867237aaa1bd7d4c2af8b7176dff58d27a12b467e99553b5868fa145f1d299fd1c23b695f46deb464ecf00422d2b2acef336a73e9e0f92
- SSDEEP
  
  1536:NlfiE0qEMrxUETkqI3/LPp2x+V64yPNRp6Yk252saMiwihtIbbpkp:vv0qfrc/LPpUKUNX/52dMiwaIbbpkp
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence