3b1ff78f719f1b90b4f090e612f3761d79cbd6e655925827c0a4238751f9f0b2 | Triage

Sharing

General

Target

3b1ff78f719f1b90b4f090e612f3761d79cbd6e655925827c0a4238751f9f0b2.exe
Size

89KB
Sample

240704-ejv1katbmr
MD5

f9b7650b044934e4fb0e1b437e9b6ee0
SHA1

d64ea661a909ae35841fac57fa9126e1e253d6da
SHA256

3b1ff78f719f1b90b4f090e612f3761d79cbd6e655925827c0a4238751f9f0b2
SHA512

ff839e9f3b6e335402bd008dd34771a505e9af9790c793a5cfcc15d51a631dfb86e1e3f062ecfb32cb0b47f7e53c7891e81c5d2e2fbe52866c2ec42e3e434380
SSDEEP

1536:Pis2lYSsPqijpxnSZTHr7I6DxcL0qZYi8PTE7SU0PMiqfpXcxlExkg8F:PiwPbjp5SZbXICrrZP9UMqFcxlakgw

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  3b1ff78f719f1b90b4f090e612f3761d79cbd6e655925827c0a4238751f9f0b2.exe
- Size
  
  89KB
- MD5
  
  f9b7650b044934e4fb0e1b437e9b6ee0
- SHA1
  
  d64ea661a909ae35841fac57fa9126e1e253d6da
- SHA256
  
  3b1ff78f719f1b90b4f090e612f3761d79cbd6e655925827c0a4238751f9f0b2
- SHA512
  
  ff839e9f3b6e335402bd008dd34771a505e9af9790c793a5cfcc15d51a631dfb86e1e3f062ecfb32cb0b47f7e53c7891e81c5d2e2fbe52866c2ec42e3e434380
- SSDEEP
  
  1536:Pis2lYSsPqijpxnSZTHr7I6DxcL0qZYi8PTE7SU0PMiqfpXcxlExkg8F:PiwPbjp5SZbXICrrZP9UMqFcxlakgw
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2