bb9bccd1c904c78826c5bb7a692b273638a8e2c03a60e5c80d9d46d89977f197 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-04-08_38435c008df3daa3d900e3fe710296d9_mafia
Size

3.7MB
Sample

240409-tyjneacc73
MD5

38435c008df3daa3d900e3fe710296d9
SHA1

f179ec7b44376d4df797f3f2b4a5bfb0b5320115
SHA256

bb9bccd1c904c78826c5bb7a692b273638a8e2c03a60e5c80d9d46d89977f197
SHA512

9d03bed3a233065572b25360f0bb29c83bf200e228c327f0300c98797a1e91e641ae859755d166407202e8254dfea30d0b974aeb2c26e6dde4324013025f0ee2
SSDEEP

49152:rPeEmY2AcRobC9iD30/89WM4yLR6ltO6pEbC7BdpUKNQwqtlCXyhjhiarwfJ9tc:rn2AcRobCL89WM916ltfEC7BdCV

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  2024-04-08_38435c008df3daa3d900e3fe710296d9_mafia
- Size
  
  3.7MB
- MD5
  
  38435c008df3daa3d900e3fe710296d9
- SHA1
  
  f179ec7b44376d4df797f3f2b4a5bfb0b5320115
- SHA256
  
  bb9bccd1c904c78826c5bb7a692b273638a8e2c03a60e5c80d9d46d89977f197
- SHA512
  
  9d03bed3a233065572b25360f0bb29c83bf200e228c327f0300c98797a1e91e641ae859755d166407202e8254dfea30d0b974aeb2c26e6dde4324013025f0ee2
- SSDEEP
  
  49152:rPeEmY2AcRobC9iD30/89WM4yLR6ltO6pEbC7BdpUKNQwqtlCXyhjhiarwfJ9tc:rn2AcRobCL89WM916ltfEC7BdCV
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2