436376c2c0da704a3bb85b917ca8609fa80d35bd2a70b20849db3218a49c71ac | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b838c0316a0c2732d26628f956f64879
Size

14KB
Sample

240306-z763yshg62
MD5

b838c0316a0c2732d26628f956f64879
SHA1

778bb494be97671ef26af193cba2defcd2679526
SHA256

436376c2c0da704a3bb85b917ca8609fa80d35bd2a70b20849db3218a49c71ac
SHA512

b351a648a5f5829c470e0893e02eb4edaea5772943fa200352fe4f95d0a2a78185a5e9cc08928ad7454eefdea43be77196d5fe15323d4d08c7f4e0109fd3be7d
SSDEEP

192:vJe3kPsm4VevmE9Aw3Exwb4//2xBBL8YfO71bv2N+CoEwHydxnySaKakTiYsEufO:vpUmTmy37w3eMHanDja4iBpIcGRQW

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  b838c0316a0c2732d26628f956f64879
- Size
  
  14KB
- MD5
  
  b838c0316a0c2732d26628f956f64879
- SHA1
  
  778bb494be97671ef26af193cba2defcd2679526
- SHA256
  
  436376c2c0da704a3bb85b917ca8609fa80d35bd2a70b20849db3218a49c71ac
- SHA512
  
  b351a648a5f5829c470e0893e02eb4edaea5772943fa200352fe4f95d0a2a78185a5e9cc08928ad7454eefdea43be77196d5fe15323d4d08c7f4e0109fd3be7d
- SSDEEP
  
  192:vJe3kPsm4VevmE9Aw3Exwb4//2xBBL8YfO71bv2N+CoEwHydxnySaKakTiYsEufO:vpUmTmy37w3eMHanDja4iBpIcGRQW
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Deletes itself
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2