fc3a84d71b0ef5f07e00c9c0711f310e72e81a7c27a011a015010d7ec33f61ae | Triage

Sharing

Copy URL Twitter E-mail

General

Target

de250e77d1e775c0950bfd24cc04b2a2
Size

41KB
Sample

240325-q1b5kahf88
MD5

de250e77d1e775c0950bfd24cc04b2a2
SHA1

1fbc0c0080647da94faff04aab6fac8d4c4ead28
SHA256

fc3a84d71b0ef5f07e00c9c0711f310e72e81a7c27a011a015010d7ec33f61ae
SHA512

665bc8f0f246171e8f448f1bdd6d25539b42b5209e8ec556b2d87401f19a766b83865ea3ab11c9fc7f5b746d6ee1c0c0a74a63ecbf22c5cb6e14388c22f46625
SSDEEP

768:QNWLuq+XuWl/womhNRpFx5YdOIYDqhIkN0Rr6IEtRWePpUuJx48SxrbWuRmGM:0WuqvgeNgfYmN0Rr6IWl1Q8aryCM

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  de250e77d1e775c0950bfd24cc04b2a2
- Size
  
  41KB
- MD5
  
  de250e77d1e775c0950bfd24cc04b2a2
- SHA1
  
  1fbc0c0080647da94faff04aab6fac8d4c4ead28
- SHA256
  
  fc3a84d71b0ef5f07e00c9c0711f310e72e81a7c27a011a015010d7ec33f61ae
- SHA512
  
  665bc8f0f246171e8f448f1bdd6d25539b42b5209e8ec556b2d87401f19a766b83865ea3ab11c9fc7f5b746d6ee1c0c0a74a63ecbf22c5cb6e14388c22f46625
- SSDEEP
  
  768:QNWLuq+XuWl/womhNRpFx5YdOIYDqhIkN0Rr6IEtRWePpUuJx48SxrbWuRmGM:0WuqvgeNgfYmN0Rr6IWl1Q8aryCM
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2