3729ff05ab9ee507f9e32efd81ff649cf6af6abb37084d7bcca99e31e4f82135 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3729ff05ab9ee507f9e32efd81ff649cf6af6abb37084d7bcca99e31e4f82135
Size

80KB
Sample

240614-y8dblaycmm
MD5

94671eb2ec464b5cfce0525b5babd697
SHA1

2dbd2fe4b1d02fa50d8343f4c49d4d6ce4998e2f
SHA256

3729ff05ab9ee507f9e32efd81ff649cf6af6abb37084d7bcca99e31e4f82135
SHA512

9a952053a7e504cf6b13d55b52fd3bbaa801c036c61167d7b679e8aed128997c41214e34a3860728791c70d197a5486b017c9f431f7532c00e66a062b651640a
SSDEEP

1536:UefRz4Keuq9NN1NNNNNNNNNNNNNNANNNNNNNjNNNNNuNBU62LMaIZTJ+7LhkiB0:UefRz4K7cuMaMU7ui

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  3729ff05ab9ee507f9e32efd81ff649cf6af6abb37084d7bcca99e31e4f82135
- Size
  
  80KB
- MD5
  
  94671eb2ec464b5cfce0525b5babd697
- SHA1
  
  2dbd2fe4b1d02fa50d8343f4c49d4d6ce4998e2f
- SHA256
  
  3729ff05ab9ee507f9e32efd81ff649cf6af6abb37084d7bcca99e31e4f82135
- SHA512
  
  9a952053a7e504cf6b13d55b52fd3bbaa801c036c61167d7b679e8aed128997c41214e34a3860728791c70d197a5486b017c9f431f7532c00e66a062b651640a
- SSDEEP
  
  1536:UefRz4Keuq9NN1NNNNNNNNNNNNNNANNNNNNNjNNNNNuNBU62LMaIZTJ+7LhkiB0:UefRz4K7cuMaMU7ui
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2