3b26761182c8c2fe154d6432723061ed15b67a58b4e128cde4b2297ae3a28d45 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3b26761182c8c2fe154d6432723061ed15b67a58b4e128cde4b2297ae3a28d45
Size

45KB
Sample

240628-zdgwzavapp
MD5

b480b38e905a1e4f172642f7f6628cea
SHA1

294e0efd30c5399c77f62ec0f2311f1f1843483a
SHA256

3b26761182c8c2fe154d6432723061ed15b67a58b4e128cde4b2297ae3a28d45
SHA512

14d56caad16d668b4aad06d5121bc9eca30f1a94c8411e6d6d3fef2b18917f6bec4dcd50c6fd7599c918301da6afaf921b09842c54772daa5baf92ed84188fab
SSDEEP

768:A+WuTqvM7x9JOQamLIyZNTnkmmY8ZLzgccnYKsiQnl4wtIFD7/1H5Ns:2M7x9JTX8yHcY89zgcKYKJQn8/o

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  3b26761182c8c2fe154d6432723061ed15b67a58b4e128cde4b2297ae3a28d45
- Size
  
  45KB
- MD5
  
  b480b38e905a1e4f172642f7f6628cea
- SHA1
  
  294e0efd30c5399c77f62ec0f2311f1f1843483a
- SHA256
  
  3b26761182c8c2fe154d6432723061ed15b67a58b4e128cde4b2297ae3a28d45
- SHA512
  
  14d56caad16d668b4aad06d5121bc9eca30f1a94c8411e6d6d3fef2b18917f6bec4dcd50c6fd7599c918301da6afaf921b09842c54772daa5baf92ed84188fab
- SSDEEP
  
  768:A+WuTqvM7x9JOQamLIyZNTnkmmY8ZLzgccnYKsiQnl4wtIFD7/1H5Ns:2M7x9JTX8yHcY89zgcKYKJQn8/o
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2