06abda1bb6cab8d0214f29a18df452f5d73f7754d05dfc227515db420cfc1b03 | Triage

Sharing

General

Target

06abda1bb6cab8d0214f29a18df452f5d73f7754d05dfc227515db420cfc1b03
Size

318KB
Sample

240920-1jb4cazcpp
MD5

b44cad34e23f72dabe7ff2b96a366f46
SHA1

80a5e213474c0f78906fa6917d506120460b4bc6
SHA256

06abda1bb6cab8d0214f29a18df452f5d73f7754d05dfc227515db420cfc1b03
SHA512

090b168f5f4fd2761d1f1a0427b7542093fb1cfaae2becc5607f22921bd544ff138a6911894d19b583058c92053044fc56a8fed0fb8d9a6f0a3896ed5196fecd
SSDEEP

6144:2N/JZhRVEQHdMcm4FmowdHoS7c5cm4FmowdHoSrNF9xRVEQHd4:2NxHO4wFHoS04wFHoSrZx8

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  06abda1bb6cab8d0214f29a18df452f5d73f7754d05dfc227515db420cfc1b03
- Size
  
  318KB
- MD5
  
  b44cad34e23f72dabe7ff2b96a366f46
- SHA1
  
  80a5e213474c0f78906fa6917d506120460b4bc6
- SHA256
  
  06abda1bb6cab8d0214f29a18df452f5d73f7754d05dfc227515db420cfc1b03
- SHA512
  
  090b168f5f4fd2761d1f1a0427b7542093fb1cfaae2becc5607f22921bd544ff138a6911894d19b583058c92053044fc56a8fed0fb8d9a6f0a3896ed5196fecd
- SSDEEP
  
  6144:2N/JZhRVEQHdMcm4FmowdHoS7c5cm4FmowdHoSrNF9xRVEQHd4:2NxHO4wFHoS04wFHoSrZx8
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence