6d946cadad0a67d4d3f9bc7a7f9b1c6960ede45712c8a83233bab124edb95559 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6d946cadad0a67d4d3f9bc7a7f9b1c6960ede45712c8a83233bab124edb95559N
Size

287KB
Sample

241013-26k57ssekb
MD5

29cf956f9f0e16d6a6a92ce6ebe9b4a0
SHA1

77cc0b2692b5cf759ac8d4fa25590745d61ade2b
SHA256

6d946cadad0a67d4d3f9bc7a7f9b1c6960ede45712c8a83233bab124edb95559
SHA512

99a277e9d4870020a1c792fde39c97b1418d6bdb09c7800ad53d001fedc51b6d57727b3baf644ec6790677daec6f222c2f608bcf95e8c1c6dcdf4b0dbf2f1e70
SSDEEP

6144:7rLbOHFjBaEpAmMGTN8qqDL6nlY9xEM0NsjEj8IX8xR9uON11r:30FjMEpACTNZqn6W7NXEGjuON

Score

6^/10

discovery persistence

Malware Config

Targets

- Target
  
  6d946cadad0a67d4d3f9bc7a7f9b1c6960ede45712c8a83233bab124edb95559N
- Size
  
  287KB
- MD5
  
  29cf956f9f0e16d6a6a92ce6ebe9b4a0
- SHA1
  
  77cc0b2692b5cf759ac8d4fa25590745d61ade2b
- SHA256
  
  6d946cadad0a67d4d3f9bc7a7f9b1c6960ede45712c8a83233bab124edb95559
- SHA512
  
  99a277e9d4870020a1c792fde39c97b1418d6bdb09c7800ad53d001fedc51b6d57727b3baf644ec6790677daec6f222c2f608bcf95e8c1c6dcdf4b0dbf2f1e70
- SSDEEP
  
  6144:7rLbOHFjBaEpAmMGTN8qqDL6nlY9xEM0NsjEj8IX8xR9uON11r:30FjMEpACTNZqn6W7NXEGjuON
Score

6^/10

discovery persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence