311ac5980b3812e7403b967df5761277e41384bcd9abfa0f8821e0d2df1abcec | Triage

Sharing

General

Target

311ac5980b3812e7403b967df5761277e41384bcd9abfa0f8821e0d2df1abcec.exe
Size

407KB
Sample

240522-qj37qacg39
MD5

139446e88b43b5517cd79c0e4de403b0
SHA1

4837e6e3bc6e83f63af2aa2a6e66d2d9db0fac4f
SHA256

311ac5980b3812e7403b967df5761277e41384bcd9abfa0f8821e0d2df1abcec
SHA512

5b1869e4fff8ae9c010922f883c8a00ef85049a8b9a312214b6f82da23c358598eb502ba416ffb50b1227f5bf251aa65af0026095187778819b765a7ae590ac3
SSDEEP

6144:rvVI5ZPJNOn5pui6yYPaIGcjDpui6yYPaIGckSU05836pui6yYPaIGckN:Z8IpV6yYP3pV6yYPg058KpV6yYPS

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  311ac5980b3812e7403b967df5761277e41384bcd9abfa0f8821e0d2df1abcec.exe
- Size
  
  407KB
- MD5
  
  139446e88b43b5517cd79c0e4de403b0
- SHA1
  
  4837e6e3bc6e83f63af2aa2a6e66d2d9db0fac4f
- SHA256
  
  311ac5980b3812e7403b967df5761277e41384bcd9abfa0f8821e0d2df1abcec
- SHA512
  
  5b1869e4fff8ae9c010922f883c8a00ef85049a8b9a312214b6f82da23c358598eb502ba416ffb50b1227f5bf251aa65af0026095187778819b765a7ae590ac3
- SSDEEP
  
  6144:rvVI5ZPJNOn5pui6yYPaIGcjDpui6yYPaIGckSU05836pui6yYPaIGckN:Z8IpV6yYP3pV6yYPg058KpV6yYPS
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2