40d71c6d3540c7292b07f0db9261e568ecb2379753f6e82622a6459079a431d7 | Triage

Sharing

General

Target

40d71c6d3540c7292b07f0db9261e568ecb2379753f6e82622a6459079a431d7
Size

3.1MB
Sample

240420-z8z12aac64
MD5

3cfa5ef243999f83c3300a57acdb088f
SHA1

39085f56fbba145c8e5a39d50f7c038c2d6d60d2
SHA256

40d71c6d3540c7292b07f0db9261e568ecb2379753f6e82622a6459079a431d7
SHA512

19c12640fca5b6e23ac0c284c2d0d0a03e482f9784064e28e9ae03f900e86980f85f65217d24cff97dfcc33e60ed29436f881de4dd32caf9fe636d02c563339d
SSDEEP

24576:txO3q5hPPh2kkkkK4kXkkkkkkkkhLX3a20R0v50+YNpsKv2EvZHp3oW999Ph2kkS:zbazR0vKLXZv91bazR0vKLXZ+baU

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  40d71c6d3540c7292b07f0db9261e568ecb2379753f6e82622a6459079a431d7
- Size
  
  3.1MB
- MD5
  
  3cfa5ef243999f83c3300a57acdb088f
- SHA1
  
  39085f56fbba145c8e5a39d50f7c038c2d6d60d2
- SHA256
  
  40d71c6d3540c7292b07f0db9261e568ecb2379753f6e82622a6459079a431d7
- SHA512
  
  19c12640fca5b6e23ac0c284c2d0d0a03e482f9784064e28e9ae03f900e86980f85f65217d24cff97dfcc33e60ed29436f881de4dd32caf9fe636d02c563339d
- SSDEEP
  
  24576:txO3q5hPPh2kkkkK4kXkkkkkkkkhLX3a20R0v50+YNpsKv2EvZHp3oW999Ph2kkS:zbazR0vKLXZv91bazR0vKLXZ+baU
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2