f3e9445e5f0d84e58a4ed53615a5dc605b183c9166a9330f63bab9c4f76ef887 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f3e9445e5f0d84e58a4ed53615a5dc605b183c9166a9330f63bab9c4f76ef887
Size

128KB
Sample

240515-fh6w4sac67
MD5

c5b2cffc631279ea0eead4cc167d5144
SHA1

f8d3364a169134e2dda4ff18a43b88a3018b749d
SHA256

f3e9445e5f0d84e58a4ed53615a5dc605b183c9166a9330f63bab9c4f76ef887
SHA512

28d9dfda0086d3761187baac171882e3b5da8b6b38ce6e2e2ce2ecdfdb4c0f8264563eeae850b84415a68bb7646cf959234b7128236641222f6594d2cfd44c29
SSDEEP

1536:4azO2qX6rOCSOs8bnuCPhiV592tWpw1CwbF0LiWrfdEznYiGzBn2rq15bLSwiHr/:4mOZqCKs8cslCwFE1rVEznYfzB9BSwW

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  f3e9445e5f0d84e58a4ed53615a5dc605b183c9166a9330f63bab9c4f76ef887
- Size
  
  128KB
- MD5
  
  c5b2cffc631279ea0eead4cc167d5144
- SHA1
  
  f8d3364a169134e2dda4ff18a43b88a3018b749d
- SHA256
  
  f3e9445e5f0d84e58a4ed53615a5dc605b183c9166a9330f63bab9c4f76ef887
- SHA512
  
  28d9dfda0086d3761187baac171882e3b5da8b6b38ce6e2e2ce2ecdfdb4c0f8264563eeae850b84415a68bb7646cf959234b7128236641222f6594d2cfd44c29
- SSDEEP
  
  1536:4azO2qX6rOCSOs8bnuCPhiV592tWpw1CwbF0LiWrfdEznYiGzBn2rq15bLSwiHr/:4mOZqCKs8cslCwFE1rVEznYfzB9BSwW
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2