43dfd70eef981a4a22e6e2d68fe5f572d6bcf19bb699c83901e577c556516c1c | Triage

Sharing

General

Target

43dfd70eef981a4a22e6e2d68fe5f572d6bcf19bb699c83901e577c556516c1c
Size

227KB
Sample

240424-szcqtace48
MD5

260eb8c839076825f908c4639afb5c93
SHA1

496d5c084b80e3f40ad5057c5be1835d1d7be46f
SHA256

43dfd70eef981a4a22e6e2d68fe5f572d6bcf19bb699c83901e577c556516c1c
SHA512

aeed0b0443d3b09732fa0f631cc73d9f8c95c2b1135c0e5c350d08564cef09d6eb5049536cf371d055c0e1ea3bf2f7a4993cadcda7cb7bff1ff7bc80378584f8
SSDEEP

3072:Yq/Wh6EwNU1vbu87Qley5pwoTRBmDRGGurhUXvBj2QE2HegPelTeIdI7jFHu:YYWUVOs87DTm7U5j2QE2+g24Id2jFHu

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  43dfd70eef981a4a22e6e2d68fe5f572d6bcf19bb699c83901e577c556516c1c
- Size
  
  227KB
- MD5
  
  260eb8c839076825f908c4639afb5c93
- SHA1
  
  496d5c084b80e3f40ad5057c5be1835d1d7be46f
- SHA256
  
  43dfd70eef981a4a22e6e2d68fe5f572d6bcf19bb699c83901e577c556516c1c
- SHA512
  
  aeed0b0443d3b09732fa0f631cc73d9f8c95c2b1135c0e5c350d08564cef09d6eb5049536cf371d055c0e1ea3bf2f7a4993cadcda7cb7bff1ff7bc80378584f8
- SSDEEP
  
  3072:Yq/Wh6EwNU1vbu87Qley5pwoTRBmDRGGurhUXvBj2QE2HegPelTeIdI7jFHu:YYWUVOs87DTm7U5j2QE2+g24Id2jFHu
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2