6482d31d40035ebdff958601fa9e772d96422ab86c5e34dc965bd9b9721f15dc | Triage

Sharing

General

Target

6482d31d40035ebdff958601fa9e772d96422ab86c5e34dc965bd9b9721f15dcN
Size

78KB
Sample

240920-zb32eswhrn
MD5

5f7de787d94820d91f6cd3a60dd5caf0
SHA1

be49cf26c0973b948825617dd9d4d33456db9881
SHA256

6482d31d40035ebdff958601fa9e772d96422ab86c5e34dc965bd9b9721f15dc
SHA512

60dfec85656de2e9da61e4ea66082deedcb4980ef28d588f9adda982f5d37c41451aeb84d87cb41cde8d66f3e4c52b64e65f4f123343cead5423cec4991d0024
SSDEEP

1536:3bhKXTgcAywgEXoq2SzFQriVeN+zL20gJi1ie:0igXq2SqiVegzL20WKt

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  6482d31d40035ebdff958601fa9e772d96422ab86c5e34dc965bd9b9721f15dcN
- Size
  
  78KB
- MD5
  
  5f7de787d94820d91f6cd3a60dd5caf0
- SHA1
  
  be49cf26c0973b948825617dd9d4d33456db9881
- SHA256
  
  6482d31d40035ebdff958601fa9e772d96422ab86c5e34dc965bd9b9721f15dc
- SHA512
  
  60dfec85656de2e9da61e4ea66082deedcb4980ef28d588f9adda982f5d37c41451aeb84d87cb41cde8d66f3e4c52b64e65f4f123343cead5423cec4991d0024
- SSDEEP
  
  1536:3bhKXTgcAywgEXoq2SzFQriVeN+zL20gJi1ie:0igXq2SqiVegzL20WKt
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence