ff3899165e69f5836410e082e4bd21f956cd1cd4a4293d7e71959d8def17b672 | Triage

Sharing

General

Target

ff3899165e69f5836410e082e4bd21f956cd1cd4a4293d7e71959d8def17b672
Size

290KB
Sample

240316-b4rxvsae96
MD5

d8d2d8b22e7b33f38f948a1b557dcdf4
SHA1

1ebcb9358d1d3855df76cd63d6e10c3751cde99f
SHA256

ff3899165e69f5836410e082e4bd21f956cd1cd4a4293d7e71959d8def17b672
SHA512

90c144fb4dbf338d4c1b7834478ea876e407e8688c24ceaa6232c67ad7eae4f3fc1011af0323ab6d7826e70fbf2a88513b6584a5d9903ba41770746db4b713f6
SSDEEP

6144:+6Rc4+h00MfDPr4xUmKyIxLDXXoq9FJZCUmKyIxL:tq4fvD832XXf9Do3

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  ff3899165e69f5836410e082e4bd21f956cd1cd4a4293d7e71959d8def17b672
- Size
  
  290KB
- MD5
  
  d8d2d8b22e7b33f38f948a1b557dcdf4
- SHA1
  
  1ebcb9358d1d3855df76cd63d6e10c3751cde99f
- SHA256
  
  ff3899165e69f5836410e082e4bd21f956cd1cd4a4293d7e71959d8def17b672
- SHA512
  
  90c144fb4dbf338d4c1b7834478ea876e407e8688c24ceaa6232c67ad7eae4f3fc1011af0323ab6d7826e70fbf2a88513b6584a5d9903ba41770746db4b713f6
- SSDEEP
  
  6144:+6Rc4+h00MfDPr4xUmKyIxLDXXoq9FJZCUmKyIxL:tq4fvD832XXf9Do3
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2