898d5bb1b4a94c6330514ac1aaa95b119661bff4b242c05fcbf2f588169839ba | Triage

Sharing

General

Target

898d5bb1b4a94c6330514ac1aaa95b119661bff4b242c05fcbf2f588169839ba
Size

488KB
Sample

240306-1fe1tsaa99
MD5

dffc4dc9bcd8aacfdc4f44d5620b89bf
SHA1

fe75de4a92129452466e25f470da5122f92bcfb5
SHA256

898d5bb1b4a94c6330514ac1aaa95b119661bff4b242c05fcbf2f588169839ba
SHA512

a25019a211057ae44212eca2953dae124281f49f55cdf88e2e4c964bc09a60ff0b2b39a776be81403c3fe3aecb852b7d2eecff425356604e6b9ed9ecea20cf19
SSDEEP

6144:wyBbiB8jlon/TNId/1fon/T9P7GSon/TNId/1fon/T2oI0YokOsfY7Uon2KO:xZiWGNIVyeNIVy2oIvPKiKO

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  898d5bb1b4a94c6330514ac1aaa95b119661bff4b242c05fcbf2f588169839ba
- Size
  
  488KB
- MD5
  
  dffc4dc9bcd8aacfdc4f44d5620b89bf
- SHA1
  
  fe75de4a92129452466e25f470da5122f92bcfb5
- SHA256
  
  898d5bb1b4a94c6330514ac1aaa95b119661bff4b242c05fcbf2f588169839ba
- SHA512
  
  a25019a211057ae44212eca2953dae124281f49f55cdf88e2e4c964bc09a60ff0b2b39a776be81403c3fe3aecb852b7d2eecff425356604e6b9ed9ecea20cf19
- SSDEEP
  
  6144:wyBbiB8jlon/TNId/1fon/T9P7GSon/TNId/1fon/T2oI0YokOsfY7Uon2KO:xZiWGNIVyeNIVy2oIvPKiKO
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2