3bb524dc4395c2f68be8c8e05bf7fbc651c0ca570b7b98a6b95d6a700c623ee0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3bb524dc4395c2f68be8c8e05bf7fbc651c0ca570b7b98a6b95d6a700c623ee0
Size

96KB
Sample

240701-zfqxnascpq
MD5

40ba8d92932e52ffd6a0e97920fb0d76
SHA1

99edf29b953c27a8f4d8ef5eebcde30bec60f40f
SHA256

3bb524dc4395c2f68be8c8e05bf7fbc651c0ca570b7b98a6b95d6a700c623ee0
SHA512

3904590ed6e24ec1455346e36b36f9343db5ccb7807d7b00e2bf87f8583140ed1d3b892b3c23b4d657c1af3f4cdb156086ae84050b8a4e247a60dba33498c4a8
SSDEEP

1536:HvUlSZFJ32m2ysQ2Lk1iPXuhiTMuZXGTIVefVDkryyAyqX:Hv5AmWaiPXuhuXGQmVDeCyqX

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  3bb524dc4395c2f68be8c8e05bf7fbc651c0ca570b7b98a6b95d6a700c623ee0
- Size
  
  96KB
- MD5
  
  40ba8d92932e52ffd6a0e97920fb0d76
- SHA1
  
  99edf29b953c27a8f4d8ef5eebcde30bec60f40f
- SHA256
  
  3bb524dc4395c2f68be8c8e05bf7fbc651c0ca570b7b98a6b95d6a700c623ee0
- SHA512
  
  3904590ed6e24ec1455346e36b36f9343db5ccb7807d7b00e2bf87f8583140ed1d3b892b3c23b4d657c1af3f4cdb156086ae84050b8a4e247a60dba33498c4a8
- SSDEEP
  
  1536:HvUlSZFJ32m2ysQ2Lk1iPXuhiTMuZXGTIVefVDkryyAyqX:Hv5AmWaiPXuhuXGQmVDeCyqX
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2