f749c6f352a2d93a4698bd1607e1a6a873563596ce442c518215e1f4ffc1fcc3 | Triage

Sharing

General

Target

f749c6f352a2d93a4698bd1607e1a6a873563596ce442c518215e1f4ffc1fcc3
Size

380KB
Sample

240319-m2rpvsac57
MD5

4747049816e4e8b4a29d8b936558a2f0
SHA1

db96d3642624b458cd3d6ae4d99a6925046eaf66
SHA256

f749c6f352a2d93a4698bd1607e1a6a873563596ce442c518215e1f4ffc1fcc3
SHA512

1b6917d25ba28d3c5c8a5f5ec2c688d8f1b4469036c948c57030fbab800e8629b7479fe241db706a10f37c7152a7b98dc6bd3a4eb5319e0af8b8f8566e2d348f
SSDEEP

6144:Pdfuk03DNCN9Otopg5tTDUZNSN58VU5tTvnVn5tTDUZNSN58Vh:PdfWAOtoq5t6NSN6G5tbt5t6NSN6T

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  f749c6f352a2d93a4698bd1607e1a6a873563596ce442c518215e1f4ffc1fcc3
- Size
  
  380KB
- MD5
  
  4747049816e4e8b4a29d8b936558a2f0
- SHA1
  
  db96d3642624b458cd3d6ae4d99a6925046eaf66
- SHA256
  
  f749c6f352a2d93a4698bd1607e1a6a873563596ce442c518215e1f4ffc1fcc3
- SHA512
  
  1b6917d25ba28d3c5c8a5f5ec2c688d8f1b4469036c948c57030fbab800e8629b7479fe241db706a10f37c7152a7b98dc6bd3a4eb5319e0af8b8f8566e2d348f
- SSDEEP
  
  6144:Pdfuk03DNCN9Otopg5tTDUZNSN58VU5tTvnVn5tTDUZNSN58Vh:PdfWAOtoq5t6NSN6G5tbt5t6NSN6T
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2