5dba6027ff58b8eabf3bbe753663441313682b397a49955e576ff6536d993bfd | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2023-08-26_3eca011d61067d899c814d0aba1cf97c_mafia_virut_JC.exe
Size

1.3MB
Sample

231012-bxvp6saa79
MD5

3eca011d61067d899c814d0aba1cf97c
SHA1

3c735f1bc83e5d63306db101439bf04f3a27a1c6
SHA256

5dba6027ff58b8eabf3bbe753663441313682b397a49955e576ff6536d993bfd
SHA512

590a6b51d4f355c4956c55efa6be97af6b54655e2a688444da8f9e61d73a1073f3168b30aa051c280fa3b1e72d1dea9ce4a21c0bcdf145a95ec3e3bc41a08c99
SSDEEP

12288:iuKogsSPBlzb2WOBk/BaCXwzeKt2CwDseTIhIo:8maBlzb2WOOYCXwqRCQ3TIOo

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  2023-08-26_3eca011d61067d899c814d0aba1cf97c_mafia_virut_JC.exe
- Size
  
  1.3MB
- MD5
  
  3eca011d61067d899c814d0aba1cf97c
- SHA1
  
  3c735f1bc83e5d63306db101439bf04f3a27a1c6
- SHA256
  
  5dba6027ff58b8eabf3bbe753663441313682b397a49955e576ff6536d993bfd
- SHA512
  
  590a6b51d4f355c4956c55efa6be97af6b54655e2a688444da8f9e61d73a1073f3168b30aa051c280fa3b1e72d1dea9ce4a21c0bcdf145a95ec3e3bc41a08c99
- SSDEEP
  
  12288:iuKogsSPBlzb2WOBk/BaCXwzeKt2CwDseTIhIo:8maBlzb2WOOYCXwqRCQ3TIOo
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2