6aec204a9d810d5e1276356f70d43b9785af2d88feefe0f63a5e734034d7aaab | Triage

Sharing

General

Target

6aec204a9d810d5e1276356f70d43b9785af2d88feefe0f63a5e734034d7aaab
Size

89KB
Sample

240920-ze4r5axaja
MD5

bbf4a89039494af635dde25cc9960e60
SHA1

8007b0cd09f3eae6ff1b539da4552b6cdc072ab1
SHA256

6aec204a9d810d5e1276356f70d43b9785af2d88feefe0f63a5e734034d7aaab
SHA512

7d2f2357c58d9e1e55d63ed1054947de9e60676805e24b054446698cdd7aa6085754c44d3b03b0292caeb2186bc9e95d99f6bc797aedad055782f53c5044f8fd
SSDEEP

1536:Q/gJSnCQgd9gTYnYWaHTNMOgGYZ7L9dJx81PBcV8lExkg8F:MCSCtdGcYWaZz0VXJx8lBcilakgw

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  6aec204a9d810d5e1276356f70d43b9785af2d88feefe0f63a5e734034d7aaab
- Size
  
  89KB
- MD5
  
  bbf4a89039494af635dde25cc9960e60
- SHA1
  
  8007b0cd09f3eae6ff1b539da4552b6cdc072ab1
- SHA256
  
  6aec204a9d810d5e1276356f70d43b9785af2d88feefe0f63a5e734034d7aaab
- SHA512
  
  7d2f2357c58d9e1e55d63ed1054947de9e60676805e24b054446698cdd7aa6085754c44d3b03b0292caeb2186bc9e95d99f6bc797aedad055782f53c5044f8fd
- SSDEEP
  
  1536:Q/gJSnCQgd9gTYnYWaHTNMOgGYZ7L9dJx81PBcV8lExkg8F:MCSCtdGcYWaZz0VXJx8lBcilakgw
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence