3532d748c6bcb6e779f4f20870f13499c5b2f3e55f35113e7ba8fa7404d3eebb | Triage

Sharing

General

Target

3532d748c6bcb6e779f4f20870f13499c5b2f3e55f35113e7ba8fa7404d3eebb.exe
Size

470KB
Sample

240704-dpd4ka1fkn
MD5

f420d95a9ef5d1d124fc22829bfed940
SHA1

ac20508552da57f187c231ee68f6515c41581c8b
SHA256

3532d748c6bcb6e779f4f20870f13499c5b2f3e55f35113e7ba8fa7404d3eebb
SHA512

2f9bec824ac1b8717359ee16c34078e7fbe8c87e90cfe89d2d0cc7f7b46edf69bf5ecbcbff5515f3a34684d7ca02fe74bbb2bc3016b1fc5e3c2d669d833d508b
SSDEEP

12288:XIiN9RE/Qc8QVj94nLiFzN3b7CUq1u2ztB1XQKTQInqyS6Rm6TIJ3l7DurTG9c8:H9+4

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  3532d748c6bcb6e779f4f20870f13499c5b2f3e55f35113e7ba8fa7404d3eebb.exe
- Size
  
  470KB
- MD5
  
  f420d95a9ef5d1d124fc22829bfed940
- SHA1
  
  ac20508552da57f187c231ee68f6515c41581c8b
- SHA256
  
  3532d748c6bcb6e779f4f20870f13499c5b2f3e55f35113e7ba8fa7404d3eebb
- SHA512
  
  2f9bec824ac1b8717359ee16c34078e7fbe8c87e90cfe89d2d0cc7f7b46edf69bf5ecbcbff5515f3a34684d7ca02fe74bbb2bc3016b1fc5e3c2d669d833d508b
- SSDEEP
  
  12288:XIiN9RE/Qc8QVj94nLiFzN3b7CUq1u2ztB1XQKTQInqyS6Rm6TIJ3l7DurTG9c8:H9+4
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2