ba8fb873f7b5d964c4f6c68a9e44625eef0ca59dc65c35e1fa9c17b2530ddf8f | Triage

Sharing

General

Target

ba8fb873f7b5d964c4f6c68a9e44625eef0ca59dc65c35e1fa9c17b2530ddf8fN
Size

468KB
Sample

241006-n3rlxssejn
MD5

e23fbd29deb4dce7c2e8e62e04aaa050
SHA1

245678e0e0ed18cad6ed27f52ad19278b418d94d
SHA256

ba8fb873f7b5d964c4f6c68a9e44625eef0ca59dc65c35e1fa9c17b2530ddf8f
SHA512

cda0da32edf532e8df2f5d30f440ae42aab64ebd9afa1bb2e85d6d0f888199c73ffb6397292b85e87fc6aec916298c5d377e48217bede148257182aad0d2aa91
SSDEEP

3072:5ZACogbdhZJBtUYJPzcBff8/EChXsaplnYHCxEuCdk+2A98uUVEh:5Z1oy/BtjP4BfflS5odkRE8uU

Score

8^/10

discovery persistence

Malware Config

Targets

- Target
  
  ba8fb873f7b5d964c4f6c68a9e44625eef0ca59dc65c35e1fa9c17b2530ddf8fN
- Size
  
  468KB
- MD5
  
  e23fbd29deb4dce7c2e8e62e04aaa050
- SHA1
  
  245678e0e0ed18cad6ed27f52ad19278b418d94d
- SHA256
  
  ba8fb873f7b5d964c4f6c68a9e44625eef0ca59dc65c35e1fa9c17b2530ddf8f
- SHA512
  
  cda0da32edf532e8df2f5d30f440ae42aab64ebd9afa1bb2e85d6d0f888199c73ffb6397292b85e87fc6aec916298c5d377e48217bede148257182aad0d2aa91
- SSDEEP
  
  3072:5ZACogbdhZJBtUYJPzcBff8/EChXsaplnYHCxEuCdk+2A98uUVEh:5Z1oy/BtjP4BfflS5odkRE8uU
Score

8^/10

discovery persistence
- Boot or Logon Autostart Execution: Active Setup
  Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
  persistence
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Active Setup

Privilege Escalation

Boot or Logon Autostart Execution

Active Setup

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

discoverypersistence