9b7d317656f88d4aed0c094af7385dfb39ed2a40890521a4e0c2b438027f116c | Triage

Sharing

General

Target

3b9e004e649dd60ffb22f3c7e3764b5e
Size

340KB
Sample

240101-cj8kjshggk
MD5

3b9e004e649dd60ffb22f3c7e3764b5e
SHA1

2d15dd868ce767d6a2cbb586d151b78d64e29930
SHA256

9b7d317656f88d4aed0c094af7385dfb39ed2a40890521a4e0c2b438027f116c
SHA512

7c2728d0eefc1bad62542debe5d8399f8b4779b1e3f0b8203ccebf88161abb438ce0d196c55131a47dbda2891cc0c5c33fc5ed5e23608ee278d169f787a4e09a
SSDEEP

6144:6u7RLTyVyjO4Q2Mt+uTMCb+56gWIFeytHdGvdregAdF7LjtNdT:xuVy64Mt+uwCb+DFeOcuPL

Score

8^/10

evasion persistence

Malware Config

Targets

- Target
  
  3b9e004e649dd60ffb22f3c7e3764b5e
- Size
  
  340KB
- MD5
  
  3b9e004e649dd60ffb22f3c7e3764b5e
- SHA1
  
  2d15dd868ce767d6a2cbb586d151b78d64e29930
- SHA256
  
  9b7d317656f88d4aed0c094af7385dfb39ed2a40890521a4e0c2b438027f116c
- SHA512
  
  7c2728d0eefc1bad62542debe5d8399f8b4779b1e3f0b8203ccebf88161abb438ce0d196c55131a47dbda2891cc0c5c33fc5ed5e23608ee278d169f787a4e09a
- SSDEEP
  
  6144:6u7RLTyVyjO4Q2Mt+uTMCb+56gWIFeytHdGvdregAdF7LjtNdT:xuVy64Mt+uwCb+DFeOcuPL
Score

8^/10

evasion persistence
- Disables taskbar notifications via registry modification
  evasion
- Modifies Installed Components in the registry
  persistence
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasionpersistence

behavioral2