386fc959d25e1db6c7c7662694fca43cf70c5fa8340c0ce0a2d4fc88f0729155 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

386fc959d25e1db6c7c7662694fca43cf70c5fa8340c0ce0a2d4fc88f0729155
Size

111KB
Sample

240410-zbvp2sea3s
MD5

be1f6df989b69bdfda5cf097eb6f53b0
SHA1

6dc87b0a0d1dd4c3cadf47ba93d131372b8a30aa
SHA256

386fc959d25e1db6c7c7662694fca43cf70c5fa8340c0ce0a2d4fc88f0729155
SHA512

2c6efcd077bc924011124420c3cbc492340c78b2ff512d7e1572d27f7778a4113953419999c12d004aeb722ecc0b65e5f2a7d14ce1957eb901b828696ab0cbc1
SSDEEP

3072:mWcYVxfZuE6/6HN5B31hhtr/IelE9pui6yYPaI7Dehib:mWxfZuE60Z1hhtbDApui6yYPaIGcb

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  386fc959d25e1db6c7c7662694fca43cf70c5fa8340c0ce0a2d4fc88f0729155
- Size
  
  111KB
- MD5
  
  be1f6df989b69bdfda5cf097eb6f53b0
- SHA1
  
  6dc87b0a0d1dd4c3cadf47ba93d131372b8a30aa
- SHA256
  
  386fc959d25e1db6c7c7662694fca43cf70c5fa8340c0ce0a2d4fc88f0729155
- SHA512
  
  2c6efcd077bc924011124420c3cbc492340c78b2ff512d7e1572d27f7778a4113953419999c12d004aeb722ecc0b65e5f2a7d14ce1957eb901b828696ab0cbc1
- SSDEEP
  
  3072:mWcYVxfZuE6/6HN5B31hhtr/IelE9pui6yYPaI7Dehib:mWxfZuE60Z1hhtbDApui6yYPaIGcb
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2