904f3a5e115f0fac8b1001d482c0f79db14e04e6c2346207c26b3df8f7ddab8f | Triage

Sharing

General

Target

b3c73660035935f2706de1acbcfdd550N.exe
Size

304KB
Sample

240727-l2r5ysvhpb
MD5

b3c73660035935f2706de1acbcfdd550
SHA1

8ffc60a99f6b43dc80bd6a9cf0a35768a576aad1
SHA256

904f3a5e115f0fac8b1001d482c0f79db14e04e6c2346207c26b3df8f7ddab8f
SHA512

0e5b49331bba18ea03bb0e7a0b8fea2cc37a33642534397627e12ff42028c3e3a4d08181bc8167678176083d9311a4b7ec3c45efe686f8eeda621e6328562b0d
SSDEEP

6144:TdE/TgpacO7JfnrFVoXJtpNr1RgAaa6FlFlcOuLr2/24qXPAbgPBFpYrFVO/fnre:y/TdJfnYdsWfna

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  b3c73660035935f2706de1acbcfdd550N.exe
- Size
  
  304KB
- MD5
  
  b3c73660035935f2706de1acbcfdd550
- SHA1
  
  8ffc60a99f6b43dc80bd6a9cf0a35768a576aad1
- SHA256
  
  904f3a5e115f0fac8b1001d482c0f79db14e04e6c2346207c26b3df8f7ddab8f
- SHA512
  
  0e5b49331bba18ea03bb0e7a0b8fea2cc37a33642534397627e12ff42028c3e3a4d08181bc8167678176083d9311a4b7ec3c45efe686f8eeda621e6328562b0d
- SSDEEP
  
  6144:TdE/TgpacO7JfnrFVoXJtpNr1RgAaa6FlFlcOuLr2/24qXPAbgPBFpYrFVO/fnre:y/TdJfnYdsWfna
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence