f98c22339ee4de1940ffeea3a2fe596bea9fa0a97ca0b260011cf9b00f6dd6ed | Triage

Sharing

General

Target

f98c22339ee4de1940ffeea3a2fe596bea9fa0a97ca0b260011cf9b00f6dd6ed
Size

320KB
Sample

240319-m45dqsad58
MD5

c3d9828483bdf3e77a18d24a595aee60
SHA1

586b49468acc98ff3bc39fee3a7554f4d230713e
SHA256

f98c22339ee4de1940ffeea3a2fe596bea9fa0a97ca0b260011cf9b00f6dd6ed
SHA512

9bbe76b465ede4b15ada815b592baddcc6ee8fac7ebccc7732a17c9e3a919974f38120d48c1a8f3759b553c941c09905e3a3c7c5d6deccf4f56d15146f1293d9
SSDEEP

3072:JekcCuvEq/nFlTWsy8/41QUUZm8/41QrAoUZ4pWLB51jozFWLBggS2LHqN:JcPEcF0OZgZ0Wd/OWdPS2L8

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  f98c22339ee4de1940ffeea3a2fe596bea9fa0a97ca0b260011cf9b00f6dd6ed
- Size
  
  320KB
- MD5
  
  c3d9828483bdf3e77a18d24a595aee60
- SHA1
  
  586b49468acc98ff3bc39fee3a7554f4d230713e
- SHA256
  
  f98c22339ee4de1940ffeea3a2fe596bea9fa0a97ca0b260011cf9b00f6dd6ed
- SHA512
  
  9bbe76b465ede4b15ada815b592baddcc6ee8fac7ebccc7732a17c9e3a919974f38120d48c1a8f3759b553c941c09905e3a3c7c5d6deccf4f56d15146f1293d9
- SSDEEP
  
  3072:JekcCuvEq/nFlTWsy8/41QUUZm8/41QrAoUZ4pWLB51jozFWLBggS2LHqN:JcPEcF0OZgZ0Wd/OWdPS2L8
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2