c6d6c2125ffa7be49c298da267d11c8ff327731f681d830c700a6b30fc814630 | Triage

Sharing

General

Target

c6d6c2125ffa7be49c298da267d11c8ff327731f681d830c700a6b30fc814630
Size

439KB
Sample

241122-enbsgstqby
MD5

c7e1c1d6b0e2362626111a7cabd8fbc3
SHA1

cf2ec73f6f2dd963379f4c9db964c2feaee18c46
SHA256

c6d6c2125ffa7be49c298da267d11c8ff327731f681d830c700a6b30fc814630
SHA512

262d479563533cf343347eb05a4d2894df4265e21436b4d4e793de51e5a33cf9a8aedcd3f64a4ac1e025ef08b19ca542cc7f3961aa2462d118407523b4b4b725
SSDEEP

12288:/8uZPeKm2OPeKm22Vtp90NtmVtp90NtXONt:7hpEkpEY

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  c6d6c2125ffa7be49c298da267d11c8ff327731f681d830c700a6b30fc814630
- Size
  
  439KB
- MD5
  
  c7e1c1d6b0e2362626111a7cabd8fbc3
- SHA1
  
  cf2ec73f6f2dd963379f4c9db964c2feaee18c46
- SHA256
  
  c6d6c2125ffa7be49c298da267d11c8ff327731f681d830c700a6b30fc814630
- SHA512
  
  262d479563533cf343347eb05a4d2894df4265e21436b4d4e793de51e5a33cf9a8aedcd3f64a4ac1e025ef08b19ca542cc7f3961aa2462d118407523b4b4b725
- SSDEEP
  
  12288:/8uZPeKm2OPeKm22Vtp90NtmVtp90NtXONt:7hpEkpEY
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence