3fcc9c933d2b9e8c7e91490835c7f9774c1d2c6a1ac4b0430ddfd42aa944390a | Triage

Sharing

General

Target

3fcc9c933d2b9e8c7e91490835c7f9774c1d2c6a1ac4b0430ddfd42aa944390a
Size

350KB
Sample

221123-s2k5zafh5s
MD5

cf4a90524ca46ff9d148fc785826bd48
SHA1

a15304b6c842ec4453e66b0d5e554557c7afbaba
SHA256

3fcc9c933d2b9e8c7e91490835c7f9774c1d2c6a1ac4b0430ddfd42aa944390a
SHA512

5303294578f2ac43f8e901c2bd5cc2ea4c427cfada13ea7e1f9aef679f535b69aaad9c26fed4a90c8db8a0bc8ee6eced656c4741396c77d6424130dd4eed4501
SSDEEP

6144:MRAhhJxX7bNIAROzTuaPUD8XRufY7L3oDNOqmq9n0bQ9kDbvVoUSAptiJw:UsAAPaPUD1SYDUxq9089kfy16

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  3fcc9c933d2b9e8c7e91490835c7f9774c1d2c6a1ac4b0430ddfd42aa944390a
- Size
  
  350KB
- MD5
  
  cf4a90524ca46ff9d148fc785826bd48
- SHA1
  
  a15304b6c842ec4453e66b0d5e554557c7afbaba
- SHA256
  
  3fcc9c933d2b9e8c7e91490835c7f9774c1d2c6a1ac4b0430ddfd42aa944390a
- SHA512
  
  5303294578f2ac43f8e901c2bd5cc2ea4c427cfada13ea7e1f9aef679f535b69aaad9c26fed4a90c8db8a0bc8ee6eced656c4741396c77d6424130dd4eed4501
- SSDEEP
  
  6144:MRAhhJxX7bNIAROzTuaPUD8XRufY7L3oDNOqmq9n0bQ9kDbvVoUSAptiJw:UsAAPaPUD1SYDUxq9089kfy16
Score

10^/10

persistence
- Modifies system executable filetype association
  persistence
- Executes dropped EXE
- Modifies Installed Components in the registry
  persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Change Default File Association

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2