3fc89862f9eadbf49589713a908e07045244281e1c4bb5ee2ee608d669554016 | Triage

Sharing

General

Target

3fc89862f9eadbf49589713a908e07045244281e1c4bb5ee2ee608d669554016
Size

192KB
Sample

240409-yh98msbg5t
MD5

c84c857d08971cc6dceab9fb8ec865c7
SHA1

873463d946f5669c6d925d2ca4febe292047557d
SHA256

3fc89862f9eadbf49589713a908e07045244281e1c4bb5ee2ee608d669554016
SHA512

d9fcb863438d00faa9e4ab5b772b102a3789dfccf11a2a3365d4bbd84487c818f78d3b8300faa5e6e6d618f77b09461b4db87f5235e8087fe20be8f46c2285c0
SSDEEP

3072:Ld+P+n+Sx5T7j6+JB8M6m9jqLsFmsdYXmLlcJVIZen+Vcv2JBwwRBkBnReP2+x7W:x+P+l5T7j6MB8MhjwszeXmr8SeT

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  3fc89862f9eadbf49589713a908e07045244281e1c4bb5ee2ee608d669554016
- Size
  
  192KB
- MD5
  
  c84c857d08971cc6dceab9fb8ec865c7
- SHA1
  
  873463d946f5669c6d925d2ca4febe292047557d
- SHA256
  
  3fc89862f9eadbf49589713a908e07045244281e1c4bb5ee2ee608d669554016
- SHA512
  
  d9fcb863438d00faa9e4ab5b772b102a3789dfccf11a2a3365d4bbd84487c818f78d3b8300faa5e6e6d618f77b09461b4db87f5235e8087fe20be8f46c2285c0
- SSDEEP
  
  3072:Ld+P+n+Sx5T7j6+JB8M6m9jqLsFmsdYXmLlcJVIZen+Vcv2JBwwRBkBnReP2+x7W:x+P+l5T7j6MB8MhjwszeXmr8SeT
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2