ff392843fe0c264db9adadaccfbce0bce59e598e3a89cd8ebadaede8f4fc9502 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ff392843fe0c264db9adadaccfbce0bce59e598e3a89cd8ebadaede8f4fc9502
Size

96KB
Sample

240706-fylacawfkk
MD5

c5edb17b8ec75e6fbbc35235c4878c10
SHA1

5de7c8209eb4dbd29f36f8bfafbe58bb40a9fbcf
SHA256

ff392843fe0c264db9adadaccfbce0bce59e598e3a89cd8ebadaede8f4fc9502
SHA512

2ef6ba0a394ec795f8c0ef497389de34b4bbb80f98ecb9327c0833c7c33fe1e084fe65bf4866c140130a469838c40dc0297dff50e1cc0b75e413eb45dda3ab9e
SSDEEP

1536:RpLxjrkClpo9LsoEVsrHBtwLFO77/gEAPZSyNmBEtgnA+duV9jojTIvjrH:fLxjrBCsBOBgUfgZZSy4BEmnA+d69jcs

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  ff392843fe0c264db9adadaccfbce0bce59e598e3a89cd8ebadaede8f4fc9502
- Size
  
  96KB
- MD5
  
  c5edb17b8ec75e6fbbc35235c4878c10
- SHA1
  
  5de7c8209eb4dbd29f36f8bfafbe58bb40a9fbcf
- SHA256
  
  ff392843fe0c264db9adadaccfbce0bce59e598e3a89cd8ebadaede8f4fc9502
- SHA512
  
  2ef6ba0a394ec795f8c0ef497389de34b4bbb80f98ecb9327c0833c7c33fe1e084fe65bf4866c140130a469838c40dc0297dff50e1cc0b75e413eb45dda3ab9e
- SSDEEP
  
  1536:RpLxjrkClpo9LsoEVsrHBtwLFO77/gEAPZSyNmBEtgnA+duV9jojTIvjrH:fLxjrBCsBOBgUfgZZSy4BEmnA+d69jcs
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2