General
-
Target
bd7303de7c0aab78b788dfc289cad7a12b8c9987076ff5d0fe11c819922ec0dcN.exe
-
Size
518KB
-
Sample
250120-kw74js1rbl
-
MD5
f32c6f3be8c7020340b7530b86e88b00
-
SHA1
bf0256c1427152d6857d626e265078b4cecdf4ac
-
SHA256
bd7303de7c0aab78b788dfc289cad7a12b8c9987076ff5d0fe11c819922ec0dc
-
SHA512
bef5f624f56cdbbb3b840d870e0fef25f3609388758d28e671898085a3d115644b2cdca5fd78a4e15c11e1141b89f9bb7eaed2ad7ebad993ba878c4a7992db6f
-
SSDEEP
12288:HtKe6Zv23Y31Juc0jKLy2w/z5oTfVEzytsA+MvpeZ+:b6Zv2YubK1wr5oyzytD+y++
Malware Config
Targets
-
-
Target
bd7303de7c0aab78b788dfc289cad7a12b8c9987076ff5d0fe11c819922ec0dcN.exe
-
Size
518KB
-
MD5
f32c6f3be8c7020340b7530b86e88b00
-
SHA1
bf0256c1427152d6857d626e265078b4cecdf4ac
-
SHA256
bd7303de7c0aab78b788dfc289cad7a12b8c9987076ff5d0fe11c819922ec0dc
-
SHA512
bef5f624f56cdbbb3b840d870e0fef25f3609388758d28e671898085a3d115644b2cdca5fd78a4e15c11e1141b89f9bb7eaed2ad7ebad993ba878c4a7992db6f
-
SSDEEP
12288:HtKe6Zv23Y31Juc0jKLy2w/z5oTfVEzytsA+MvpeZ+:b6Zv2YubK1wr5oyzytD+y++
Score8/10-
Boot or Logon Autostart Execution: Active Setup
Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
-
Executes dropped EXE
-
Modifies system executable filetype association
-
Adds Run key to start application
-
Drops file in System32 directory
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
2Active Setup
1Registry Run Keys / Startup Folder
1Event Triggered Execution
1Change Default File Association
1