b7b605cfdbcada280475f1191486d4a6b982639df1ad7e5ca5831042c409e4d2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b7b605cfdbcada280475f1191486d4a6b982639df1ad7e5ca5831042c409e4d2N
Size

64KB
Sample

241015-bywnvs1dkp
MD5

cedad283e00469ea9642e330207527c0
SHA1

14c96db56010cf3c6acb877bbe5fe452c7caf82d
SHA256

b7b605cfdbcada280475f1191486d4a6b982639df1ad7e5ca5831042c409e4d2
SHA512

ad5851740def16744a03757216f539a079af593487b0055940d2e1e5bb98f6f337a2538ba050086f9f6239bbe0d244b19963cd752ea809a78ac06588e677c465
SSDEEP

1536:j7K91BhEC4Q3igXwMex2xBX2KenE5xS4QUXruCHcpzt/Idn:j7K91BuC4QygvuXvEavpFwn

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  b7b605cfdbcada280475f1191486d4a6b982639df1ad7e5ca5831042c409e4d2N
- Size
  
  64KB
- MD5
  
  cedad283e00469ea9642e330207527c0
- SHA1
  
  14c96db56010cf3c6acb877bbe5fe452c7caf82d
- SHA256
  
  b7b605cfdbcada280475f1191486d4a6b982639df1ad7e5ca5831042c409e4d2
- SHA512
  
  ad5851740def16744a03757216f539a079af593487b0055940d2e1e5bb98f6f337a2538ba050086f9f6239bbe0d244b19963cd752ea809a78ac06588e677c465
- SSDEEP
  
  1536:j7K91BhEC4Q3igXwMex2xBX2KenE5xS4QUXruCHcpzt/Idn:j7K91BuC4QygvuXvEavpFwn
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence