f96f31a9bfa54b15b0c1a58805cf94c09caf7e8231e3911383b2841df748b30f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-04-08_4a989ce24e39dabc7ca5707964deca77_mafia
Size

4.6MB
Sample

240409-vkp4psge5z
MD5

4a989ce24e39dabc7ca5707964deca77
SHA1

20d93cb1efcb5b74ecf279828f762e9e9ad517f6
SHA256

f96f31a9bfa54b15b0c1a58805cf94c09caf7e8231e3911383b2841df748b30f
SHA512

cbb57e68fd27d190e26ed7a9bd0cc478d1c3b566600744971fb0c2285409c6b06fa2b1ed0d0dc4b7a0138deb11f52e4fee664b25efbebfd55f48b8349c500a31
SSDEEP

98304:uDHjjTN/1RSNhxo4f5PIK9lKtlra/LtX0gnbO+q0MW:gjjR9IL24WK9lK2Jkgf

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  2024-04-08_4a989ce24e39dabc7ca5707964deca77_mafia
- Size
  
  4.6MB
- MD5
  
  4a989ce24e39dabc7ca5707964deca77
- SHA1
  
  20d93cb1efcb5b74ecf279828f762e9e9ad517f6
- SHA256
  
  f96f31a9bfa54b15b0c1a58805cf94c09caf7e8231e3911383b2841df748b30f
- SHA512
  
  cbb57e68fd27d190e26ed7a9bd0cc478d1c3b566600744971fb0c2285409c6b06fa2b1ed0d0dc4b7a0138deb11f52e4fee664b25efbebfd55f48b8349c500a31
- SSDEEP
  
  98304:uDHjjTN/1RSNhxo4f5PIK9lKtlra/LtX0gnbO+q0MW:gjjR9IL24WK9lK2Jkgf
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2