6246bcc40f2588841dde2ccea51efd504086812a99998bb392163358de882e41 | Triage

Sharing

General

Target

6246bcc40f2588841dde2ccea51efd504086812a99998bb392163358de882e41N
Size

128KB
Sample

240920-z5e7fsyekq
MD5

fa4069eebd87031bf1b136cb2995b290
SHA1

e6eff23a9c22c16bca17e699813381d3494c9625
SHA256

6246bcc40f2588841dde2ccea51efd504086812a99998bb392163358de882e41
SHA512

7e60b41ddd9ba36be0a655ff8b3328582f45078a91cfd1575efc19b037537329e1cc73a174d1e807981b3849e555a26ca981b164c7128fb1a47344f533146410
SSDEEP

3072:De+R9zam1/Jln67ag7R0rPxMeEvPOdgujv6NLPfFFrKP9:d9zr1Aaa0rJML3OdgawrFZKP

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  6246bcc40f2588841dde2ccea51efd504086812a99998bb392163358de882e41N
- Size
  
  128KB
- MD5
  
  fa4069eebd87031bf1b136cb2995b290
- SHA1
  
  e6eff23a9c22c16bca17e699813381d3494c9625
- SHA256
  
  6246bcc40f2588841dde2ccea51efd504086812a99998bb392163358de882e41
- SHA512
  
  7e60b41ddd9ba36be0a655ff8b3328582f45078a91cfd1575efc19b037537329e1cc73a174d1e807981b3849e555a26ca981b164c7128fb1a47344f533146410
- SSDEEP
  
  3072:De+R9zam1/Jln67ag7R0rPxMeEvPOdgujv6NLPfFFrKP9:d9zr1Aaa0rJML3OdgawrFZKP
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence