3e03b33a577e5ccd8ee69bf4e43ecad1f3613edae0039161d1971fdf3718f560 | Triage

Sharing

General

Target

3e03b33a577e5ccd8ee69bf4e43ecad1f3613edae0039161d1971fdf3718f560
Size

359KB
Sample

240727-z7v1pazbkr
MD5

b9c65533f6a9310593811bde80678bd1
SHA1

2b5835df147ab33e653a05dc9616fa025a849f8d
SHA256

3e03b33a577e5ccd8ee69bf4e43ecad1f3613edae0039161d1971fdf3718f560
SHA512

e907ad205c451b6f6dde12bc014cd99fd15c38dc26ec6fc0fb7b58237964f667bee4c914d545148f769c890f0447c0523b12123bef10c633f88d8d3f4d9c7d2d
SSDEEP

3072:K/HMqCxJL7oOrNeWX60kQI8Va3CkfUVuyelbvP5lkzmQ1o0Otw44KmfpKivFM6Wn:1PDkvq6prba4Yb31/do

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  3e03b33a577e5ccd8ee69bf4e43ecad1f3613edae0039161d1971fdf3718f560
- Size
  
  359KB
- MD5
  
  b9c65533f6a9310593811bde80678bd1
- SHA1
  
  2b5835df147ab33e653a05dc9616fa025a849f8d
- SHA256
  
  3e03b33a577e5ccd8ee69bf4e43ecad1f3613edae0039161d1971fdf3718f560
- SHA512
  
  e907ad205c451b6f6dde12bc014cd99fd15c38dc26ec6fc0fb7b58237964f667bee4c914d545148f769c890f0447c0523b12123bef10c633f88d8d3f4d9c7d2d
- SSDEEP
  
  3072:K/HMqCxJL7oOrNeWX60kQI8Va3CkfUVuyelbvP5lkzmQ1o0Otw44KmfpKivFM6Wn:1PDkvq6prba4Yb31/do
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence