42571aae7361cb978912dad1b16c259f15e6bf3fdd2ee0347c90e18b034a0ee3 | Triage

Sharing

General

Target

c3d300a013f167c99b759591baea9fc8
Size

21KB
Sample

240312-tzmrfsff59
MD5

c3d300a013f167c99b759591baea9fc8
SHA1

49ab39e92f879f0e5da854a34269fbbb4eb772a9
SHA256

42571aae7361cb978912dad1b16c259f15e6bf3fdd2ee0347c90e18b034a0ee3
SHA512

aede961f3a93d7647b1823e50422f9583728404ebe412a5cf99a8ab3a9cfea3d380ec4d9f94e9cc982e8b5199eb091b1b5bcb59cee8015bcd2e02401597eb4d2
SSDEEP

384:bmDm2QQ0s1/W+7W4IrNzSjTZdAK61qD3ZA2gKw7XXC2nQw+ALZxW5gOkcfz+N:b4m1I/WT4IxzSjTZh61k3uFp7XtpZ9i

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  c3d300a013f167c99b759591baea9fc8
- Size
  
  21KB
- MD5
  
  c3d300a013f167c99b759591baea9fc8
- SHA1
  
  49ab39e92f879f0e5da854a34269fbbb4eb772a9
- SHA256
  
  42571aae7361cb978912dad1b16c259f15e6bf3fdd2ee0347c90e18b034a0ee3
- SHA512
  
  aede961f3a93d7647b1823e50422f9583728404ebe412a5cf99a8ab3a9cfea3d380ec4d9f94e9cc982e8b5199eb091b1b5bcb59cee8015bcd2e02401597eb4d2
- SSDEEP
  
  384:bmDm2QQ0s1/W+7W4IrNzSjTZdAK61qD3ZA2gKw7XXC2nQw+ALZxW5gOkcfz+N:b4m1I/WT4IxzSjTZh61k3uFp7XtpZ9i
Score

8^/10

persistence
- Drops file in Drivers directory
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2