c3bbb48f52501cd782a8a0ecef24c4f046e6c8869d8461ec01a674f2bf503874 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c3bbb48f52501cd782a8a0ecef24c4f046e6c8869d8461ec01a674f2bf503874
Size

359KB
Sample

240507-bfq1nabd9v
MD5

addcf7a738da4867b3cc8ea2d0b45060
SHA1

7714c01641799110e6314c5491e027132b9ac8ce
SHA256

c3bbb48f52501cd782a8a0ecef24c4f046e6c8869d8461ec01a674f2bf503874
SHA512

4bed37cdd8cc951ac2b25c0c06c0a252efc5dc55f8cc52cd61f4d465200a76fc9a1f2dcf88a966edc1b1f54177f56e331782f07d1ab82642d1d70d2dcc8e21b3
SSDEEP

3072:0kSj61ymyNhq0kQI8Va3CkfUVuyelbvP5lkzmQ1o0Otw44KmfpKivFM6WpqXWweb:0k/YmyNhqprba4Yb31/do

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  c3bbb48f52501cd782a8a0ecef24c4f046e6c8869d8461ec01a674f2bf503874
- Size
  
  359KB
- MD5
  
  addcf7a738da4867b3cc8ea2d0b45060
- SHA1
  
  7714c01641799110e6314c5491e027132b9ac8ce
- SHA256
  
  c3bbb48f52501cd782a8a0ecef24c4f046e6c8869d8461ec01a674f2bf503874
- SHA512
  
  4bed37cdd8cc951ac2b25c0c06c0a252efc5dc55f8cc52cd61f4d465200a76fc9a1f2dcf88a966edc1b1f54177f56e331782f07d1ab82642d1d70d2dcc8e21b3
- SSDEEP
  
  3072:0kSj61ymyNhq0kQI8Va3CkfUVuyelbvP5lkzmQ1o0Otw44KmfpKivFM6WpqXWweb:0k/YmyNhqprba4Yb31/do
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2