4696314a5e21adc9e8b697b86643b83058a6f75bce882c0e098a1cae75b13307 | Triage

Sharing

General

Target

4696314a5e21adc9e8b697b86643b83058a6f75bce882c0e098a1cae75b13307
Size

176KB
Sample

240327-yjqkmadh3y
MD5

31e98044fdb24061066562686cd7a8f8
SHA1

fe00db41639a0cf35ee10970c2c494b4a501119e
SHA256

4696314a5e21adc9e8b697b86643b83058a6f75bce882c0e098a1cae75b13307
SHA512

d3164406fab832bd34da5dc53368bcfef70feada20adb046e2921b489f7014290748b1182a15ecc006019d77a9a0adf19f9f78e90b8b795c2bbdf5ef7267eb09
SSDEEP

3072:OyMO2Lb/urHZ3faZ5De/Ey032yaCMMq9FIUPv9XOVw1FaX6lwzmOJfYerMMq9FIT:Oy4HKvaZ5q/E4f9FIUpOVw86CmOJfToG

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  4696314a5e21adc9e8b697b86643b83058a6f75bce882c0e098a1cae75b13307
- Size
  
  176KB
- MD5
  
  31e98044fdb24061066562686cd7a8f8
- SHA1
  
  fe00db41639a0cf35ee10970c2c494b4a501119e
- SHA256
  
  4696314a5e21adc9e8b697b86643b83058a6f75bce882c0e098a1cae75b13307
- SHA512
  
  d3164406fab832bd34da5dc53368bcfef70feada20adb046e2921b489f7014290748b1182a15ecc006019d77a9a0adf19f9f78e90b8b795c2bbdf5ef7267eb09
- SSDEEP
  
  3072:OyMO2Lb/urHZ3faZ5De/Ey032yaCMMq9FIUPv9XOVw1FaX6lwzmOJfYerMMq9FIT:Oy4HKvaZ5q/E4f9FIUpOVw86CmOJfToG
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2