963a0baaa456d419723e0cedca3257aac5fd7ad84af539f4c54b65c1eb87535c | Triage

Sharing

General

Target

963a0baaa456d419723e0cedca3257aac5fd7ad84af539f4c54b65c1eb87535c
Size

391KB
Sample

240620-a3zqmszaqc
MD5

6a85787b2d5ac8e81049bcd6892ced6c
SHA1

61a8669d709fb503260d88e06476d0e52a0d96cb
SHA256

963a0baaa456d419723e0cedca3257aac5fd7ad84af539f4c54b65c1eb87535c
SHA512

35105066df80397259195bb37363f286030ac8841f366f0360a16d547d10ea92fdf92b8172947c545bc386eb1894e69e6fb2a8ac82e55b6ccc746f7aeccaf6cd
SSDEEP

6144:Wi+8jVPyTRWCaAfbAfNtTAfMAfFAfNPUmKyIxLfYeOO9UmKyIxL:g8jQRBmNtuhUNP3cOK3

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  963a0baaa456d419723e0cedca3257aac5fd7ad84af539f4c54b65c1eb87535c
- Size
  
  391KB
- MD5
  
  6a85787b2d5ac8e81049bcd6892ced6c
- SHA1
  
  61a8669d709fb503260d88e06476d0e52a0d96cb
- SHA256
  
  963a0baaa456d419723e0cedca3257aac5fd7ad84af539f4c54b65c1eb87535c
- SHA512
  
  35105066df80397259195bb37363f286030ac8841f366f0360a16d547d10ea92fdf92b8172947c545bc386eb1894e69e6fb2a8ac82e55b6ccc746f7aeccaf6cd
- SSDEEP
  
  6144:Wi+8jVPyTRWCaAfbAfNtTAfMAfFAfNPUmKyIxLfYeOO9UmKyIxL:g8jQRBmNtuhUNP3cOK3
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2