411ffcb94cacd36c59660c2e4826f972d0edd0938c597ba4240b3444e41709cf | Triage

Sharing

Copy URL Twitter E-mail

General

Target

411ffcb94cacd36c59660c2e4826f972d0edd0938c597ba4240b3444e41709cf
Size

2.7MB
Sample

240523-zjezkafg33
MD5

7d870b2e2d3220f8966af65b51f0df3f
SHA1

cae37bbe9c1ffa2bd93de85c86778f04349f6e02
SHA256

411ffcb94cacd36c59660c2e4826f972d0edd0938c597ba4240b3444e41709cf
SHA512

5aee36f953f71f6607b96d33c4a61068ee2ebf818f3000aaf1f9b720d5c60e2d2ca996cc1918575cf446ecc72a746ed80c0d060e657fb6e01e335dac1890b2c6
SSDEEP

49152:+R0p8xHycIq+GI27nGroMPTJPer1c2HSjpjK3LBZ9w4Sx:+R0pI/IQlUoMPdmpSpx4

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  411ffcb94cacd36c59660c2e4826f972d0edd0938c597ba4240b3444e41709cf
- Size
  
  2.7MB
- MD5
  
  7d870b2e2d3220f8966af65b51f0df3f
- SHA1
  
  cae37bbe9c1ffa2bd93de85c86778f04349f6e02
- SHA256
  
  411ffcb94cacd36c59660c2e4826f972d0edd0938c597ba4240b3444e41709cf
- SHA512
  
  5aee36f953f71f6607b96d33c4a61068ee2ebf818f3000aaf1f9b720d5c60e2d2ca996cc1918575cf446ecc72a746ed80c0d060e657fb6e01e335dac1890b2c6
- SSDEEP
  
  49152:+R0p8xHycIq+GI27nGroMPTJPer1c2HSjpjK3LBZ9w4Sx:+R0pI/IQlUoMPdmpSpx4
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2