3b9b76d7c7ec9adc838a31c597603f2b2dc8177dd1ad38342bf2290886c389cb | Triage

Sharing

General

Target

3b9b76d7c7ec9adc838a31c597603f2b2dc8177dd1ad38342bf2290886c389cb
Size

259KB
Sample

240710-1da9vstcmd
MD5

d0fa9f486d1db55000b597c1876f13da
SHA1

fda0a715e5d2d95cfa769c31bd84ec1b6df6e591
SHA256

3b9b76d7c7ec9adc838a31c597603f2b2dc8177dd1ad38342bf2290886c389cb
SHA512

625d8772c7787a59ff4741774a2fda99a9721738b95ea39f06378fbbdc1a355cc6937de4f2deadbadeb42e2ea0b0891383c69fec1e9c5f37dd2ee2a5185fc153
SSDEEP

6144:OBFE6XJame/QEg9opBsDshsrYIcm4FmowdHoSa:+30hssO4wFHoSa

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  3b9b76d7c7ec9adc838a31c597603f2b2dc8177dd1ad38342bf2290886c389cb
- Size
  
  259KB
- MD5
  
  d0fa9f486d1db55000b597c1876f13da
- SHA1
  
  fda0a715e5d2d95cfa769c31bd84ec1b6df6e591
- SHA256
  
  3b9b76d7c7ec9adc838a31c597603f2b2dc8177dd1ad38342bf2290886c389cb
- SHA512
  
  625d8772c7787a59ff4741774a2fda99a9721738b95ea39f06378fbbdc1a355cc6937de4f2deadbadeb42e2ea0b0891383c69fec1e9c5f37dd2ee2a5185fc153
- SSDEEP
  
  6144:OBFE6XJame/QEg9opBsDshsrYIcm4FmowdHoSa:+30hssO4wFHoSa
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2