35002ed9ef46712316f5873fc159d7d3f5775f9bd29ca9da3b8ae4add3bb1216 | Triage

Sharing

General

Target

35002ed9ef46712316f5873fc159d7d3f5775f9bd29ca9da3b8ae4add3bb1216.exe
Size

435KB
Sample

240522-zby3gafe6w
MD5

2984ce8cfcea1b177efcd9370bc43a00
SHA1

7e33406c1336a0c0ebda8ada2bc060cde01088e0
SHA256

35002ed9ef46712316f5873fc159d7d3f5775f9bd29ca9da3b8ae4add3bb1216
SHA512

ab83dd1b4be26e81724f85b61cf9d76fec5383e1660c88e65f7402359bf2989664b1441f7e4c995ba9d959f360c57df3f79297ddb6eb3f7f7e8af83d5218edae
SSDEEP

6144:0MXvf/Fw8tmxwbWGRdA6sQc/Yp7TVX3J/1awbWGRdA6sQc/Y+mjwjOx5H:7/FHfbWGRdA6sQhPbWGRdA6sQvjpxN

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  35002ed9ef46712316f5873fc159d7d3f5775f9bd29ca9da3b8ae4add3bb1216.exe
- Size
  
  435KB
- MD5
  
  2984ce8cfcea1b177efcd9370bc43a00
- SHA1
  
  7e33406c1336a0c0ebda8ada2bc060cde01088e0
- SHA256
  
  35002ed9ef46712316f5873fc159d7d3f5775f9bd29ca9da3b8ae4add3bb1216
- SHA512
  
  ab83dd1b4be26e81724f85b61cf9d76fec5383e1660c88e65f7402359bf2989664b1441f7e4c995ba9d959f360c57df3f79297ddb6eb3f7f7e8af83d5218edae
- SSDEEP
  
  6144:0MXvf/Fw8tmxwbWGRdA6sQc/Yp7TVX3J/1awbWGRdA6sQc/Y+mjwjOx5H:7/FHfbWGRdA6sQhPbWGRdA6sQvjpxN
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2