b2df81a66a1e5575fca7af1e9cd242b22e33bb1943fb3852efe0db51f1a522af | Triage

Sharing

General

Target

b2df81a66a1e5575fca7af1e9cd242b22e33bb1943fb3852efe0db51f1a522afN
Size

89KB
Sample

241005-bmax1sxaml
MD5

dcfb14e4f1b8e2afc404021c7efd7380
SHA1

49daf6476815d8aa0a92b54fbdd9c1986089edfb
SHA256

b2df81a66a1e5575fca7af1e9cd242b22e33bb1943fb3852efe0db51f1a522af
SHA512

5ac7e20cda937b315a97bd3f8d5ba52c82549b50c3b63f64aea5538e049ccea7de4319945ea8e5702368c2fd0d78f6527730e1f15e43871e287c9c6fc0965f89
SSDEEP

1536:5nZr6C0pPeJQNjL3J7DJKYJTPOGDY4GDrbbbbbbVEI0Pc4lExkg8F:5nZr162J83zVY4GDbKc4lakgw

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  b2df81a66a1e5575fca7af1e9cd242b22e33bb1943fb3852efe0db51f1a522afN
- Size
  
  89KB
- MD5
  
  dcfb14e4f1b8e2afc404021c7efd7380
- SHA1
  
  49daf6476815d8aa0a92b54fbdd9c1986089edfb
- SHA256
  
  b2df81a66a1e5575fca7af1e9cd242b22e33bb1943fb3852efe0db51f1a522af
- SHA512
  
  5ac7e20cda937b315a97bd3f8d5ba52c82549b50c3b63f64aea5538e049ccea7de4319945ea8e5702368c2fd0d78f6527730e1f15e43871e287c9c6fc0965f89
- SSDEEP
  
  1536:5nZr6C0pPeJQNjL3J7DJKYJTPOGDY4GDrbbbbbbVEI0Pc4lExkg8F:5nZr162J83zVY4GDbKc4lakgw
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence