3fefe24d3fbadc27fe76b626a79e5471a12fea3e2dff854d7f85d63d1067be86 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3fefe24d3fbadc27fe76b626a79e5471a12fea3e2dff854d7f85d63d1067be86
Size

483KB
Sample

240408-zck71aed9s
MD5

13bdc15ea81b33a8d6b86a6479c570df
SHA1

b1480ce36f82eac9402d193fd58b93885607d061
SHA256

3fefe24d3fbadc27fe76b626a79e5471a12fea3e2dff854d7f85d63d1067be86
SHA512

b53c2c9e78446491c91164ecbbbbd51f5df3ce51d101d285dd77905b59cb7de57769fa451f364db81dcabe1418b5db0dbbc706f79f5d84250cf11ed84247f8bf
SSDEEP

12288:cUltY5vARMSG0dhvARM/3ARMSG0dhvARMoHG:btY5wdhcdhMHG

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  3fefe24d3fbadc27fe76b626a79e5471a12fea3e2dff854d7f85d63d1067be86
- Size
  
  483KB
- MD5
  
  13bdc15ea81b33a8d6b86a6479c570df
- SHA1
  
  b1480ce36f82eac9402d193fd58b93885607d061
- SHA256
  
  3fefe24d3fbadc27fe76b626a79e5471a12fea3e2dff854d7f85d63d1067be86
- SHA512
  
  b53c2c9e78446491c91164ecbbbbd51f5df3ce51d101d285dd77905b59cb7de57769fa451f364db81dcabe1418b5db0dbbc706f79f5d84250cf11ed84247f8bf
- SSDEEP
  
  12288:cUltY5vARMSG0dhvARM/3ARMSG0dhvARMoHG:btY5wdhcdhMHG
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2