bb405b380c623b401a5d4f6cc23b3d91ad871a76bd4dd19a6fce30f34d5f5784 | Triage

Sharing

General

Target

bb405b380c623b401a5d4f6cc23b3d91ad871a76bd4dd19a6fce30f34d5f5784N
Size

514KB
Sample

240921-b55kcazbqk
MD5

dc53d3f643ba19a1c7967cc380660640
SHA1

149b6e91d5039c843903765cc4e9f4b2b334559a
SHA256

bb405b380c623b401a5d4f6cc23b3d91ad871a76bd4dd19a6fce30f34d5f5784
SHA512

8b03d73a7d9d99235679087d9d5f1e0c50448454d847421f4b860f57c26b2b0a6460c415dcf340a3d4bd08b5e63ef6a51199cad737e1ed215f96a883514be66f
SSDEEP

12288:l/lc87eqqV5e+wBV6O+NXJzwByDZJtwuSdd8wfG68XimP:l/SqqHeVBx4XJ0kxtSPJJKimP

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  bb405b380c623b401a5d4f6cc23b3d91ad871a76bd4dd19a6fce30f34d5f5784N
- Size
  
  514KB
- MD5
  
  dc53d3f643ba19a1c7967cc380660640
- SHA1
  
  149b6e91d5039c843903765cc4e9f4b2b334559a
- SHA256
  
  bb405b380c623b401a5d4f6cc23b3d91ad871a76bd4dd19a6fce30f34d5f5784
- SHA512
  
  8b03d73a7d9d99235679087d9d5f1e0c50448454d847421f4b860f57c26b2b0a6460c415dcf340a3d4bd08b5e63ef6a51199cad737e1ed215f96a883514be66f
- SSDEEP
  
  12288:l/lc87eqqV5e+wBV6O+NXJzwByDZJtwuSdd8wfG68XimP:l/SqqHeVBx4XJ0kxtSPJJKimP
Score

7^/10

discovery persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence