6e6cc12a60324a48828b62294022aa6433e95349b3ffd50c5173eefdbb722fc8 | Triage

Sharing

General

Target

6e6cc12a60324a48828b62294022aa6433e95349b3ffd50c5173eefdbb722fc8N
Size

59KB
Sample

241017-1ap9lszgql
MD5

914c61847bf2d4c56632d4ad506dcaa0
SHA1

12a2cca9a3848c3533c4fa676d3deec4e0f05c8c
SHA256

6e6cc12a60324a48828b62294022aa6433e95349b3ffd50c5173eefdbb722fc8
SHA512

b33971c3a17625f1fb8d8d788074c428e515bb7ecbd56d60d0764dff94920a34a8ccb35195d845f394038065b4c370726c69601d55fe76f97acef71be3062e2e
SSDEEP

768:EgqmDf70iOSFrVnOF/H5teIey0VVn9dM58tCtrEnh3nK5pdVa2p/1H57XdnhfXaH:tD0LoVnye9y0V190BtrEnh3EVa2LfO

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  6e6cc12a60324a48828b62294022aa6433e95349b3ffd50c5173eefdbb722fc8N
- Size
  
  59KB
- MD5
  
  914c61847bf2d4c56632d4ad506dcaa0
- SHA1
  
  12a2cca9a3848c3533c4fa676d3deec4e0f05c8c
- SHA256
  
  6e6cc12a60324a48828b62294022aa6433e95349b3ffd50c5173eefdbb722fc8
- SHA512
  
  b33971c3a17625f1fb8d8d788074c428e515bb7ecbd56d60d0764dff94920a34a8ccb35195d845f394038065b4c370726c69601d55fe76f97acef71be3062e2e
- SSDEEP
  
  768:EgqmDf70iOSFrVnOF/H5teIey0VVn9dM58tCtrEnh3nK5pdVa2p/1H57XdnhfXaH:tD0LoVnye9y0V190BtrEnh3EVa2LfO
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence