821b61e4f059ea7e1b682b81487b24e2c71dc1b01927013436c38c6e956ed628 | Triage

Sharing

General

Target

821b61e4f059ea7e1b682b81487b24e2c71dc1b01927013436c38c6e956ed628
Size

87KB
Sample

240628-3ph5ysycmr
MD5

3144e5b2ab075dfcaa045b564ec53623
SHA1

22c211e1fdf15c85acd891eacb7ce206f67f70b8
SHA256

821b61e4f059ea7e1b682b81487b24e2c71dc1b01927013436c38c6e956ed628
SHA512

cde834d393a3da90f1f1f9e34057f111de2ea1cf9f01be602b255031ec411c3377745fd62688fd680890793528c2e9148926e31e51ecf34f701734601e803a14
SSDEEP

1536:7jvMZ+MYm/nhbYFHKdDFx9D7a7fdhcd8zSdsFlRQ4NRSRBDNrR0RVe7R6R8RPD2d:7bMZ+MYBFHKd/FycyqsFlewAnDlmbGch

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  821b61e4f059ea7e1b682b81487b24e2c71dc1b01927013436c38c6e956ed628
- Size
  
  87KB
- MD5
  
  3144e5b2ab075dfcaa045b564ec53623
- SHA1
  
  22c211e1fdf15c85acd891eacb7ce206f67f70b8
- SHA256
  
  821b61e4f059ea7e1b682b81487b24e2c71dc1b01927013436c38c6e956ed628
- SHA512
  
  cde834d393a3da90f1f1f9e34057f111de2ea1cf9f01be602b255031ec411c3377745fd62688fd680890793528c2e9148926e31e51ecf34f701734601e803a14
- SSDEEP
  
  1536:7jvMZ+MYm/nhbYFHKdDFx9D7a7fdhcd8zSdsFlRQ4NRSRBDNrR0RVe7R6R8RPD2d:7bMZ+MYBFHKd/FycyqsFlewAnDlmbGch
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2