faff9d4e5a7f4264c6ece346b7bc2aa3d38257b3eea4edf9dc4ce80cf60112c7 | Triage

Sharing

General

Target

faff9d4e5a7f4264c6ece346b7bc2aa3d38257b3eea4edf9dc4ce80cf60112c7
Size

96KB
Sample

240620-gf3x4sscka
MD5

93d4533eb6dc99689092eb0c23950110
SHA1

40e2f708de1df5bf7045b35c67f34cd443ade42d
SHA256

faff9d4e5a7f4264c6ece346b7bc2aa3d38257b3eea4edf9dc4ce80cf60112c7
SHA512

1fef526bfc5b8bab876854267087515e878cb49514e184331ff6dd2b0864a931173a9571d86e3046bfc816460853585be6cb68bb0ae125190efdedfb92935745
SSDEEP

1536:KAz5Dm2wROljqTsE58oKA7vGCWij2Lg0aIZTJ+7LhkiB0MPiKeEAgH:KAz5y2wA5T/ojWDfaMU7uihJ5

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  faff9d4e5a7f4264c6ece346b7bc2aa3d38257b3eea4edf9dc4ce80cf60112c7
- Size
  
  96KB
- MD5
  
  93d4533eb6dc99689092eb0c23950110
- SHA1
  
  40e2f708de1df5bf7045b35c67f34cd443ade42d
- SHA256
  
  faff9d4e5a7f4264c6ece346b7bc2aa3d38257b3eea4edf9dc4ce80cf60112c7
- SHA512
  
  1fef526bfc5b8bab876854267087515e878cb49514e184331ff6dd2b0864a931173a9571d86e3046bfc816460853585be6cb68bb0ae125190efdedfb92935745
- SSDEEP
  
  1536:KAz5Dm2wROljqTsE58oKA7vGCWij2Lg0aIZTJ+7LhkiB0MPiKeEAgH:KAz5y2wA5T/ojWDfaMU7uihJ5
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2