dc3aeb0664578d0ff8d0b9d4384f3d048a58f01ec17315ec3aac71d44455a62c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

dc3aeb0664578d0ff8d0b9d4384f3d048a58f01ec17315ec3aac71d44455a62c
Size

4.1MB
Sample

240818-f72cxsyapa
MD5

b9b1445a734df05a0e10c6f1ad1acb3a
SHA1

785e1bba6b7ec1c8902fd67662c5bd2a604c94e4
SHA256

dc3aeb0664578d0ff8d0b9d4384f3d048a58f01ec17315ec3aac71d44455a62c
SHA512

31e2acc5fdd20d920d151541d68d075d683e0b9b276e028c69712aeb36e2249a9dd7acc736aa178480ba06efa447c684b36f1273cc0d4ce5f73ddb922c9cafea
SSDEEP

98304:hRW2gSRW2gdpRW2gSRW2gdjQ0KaRW2gy0prO6:iRsRZQ06BF1

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  dc3aeb0664578d0ff8d0b9d4384f3d048a58f01ec17315ec3aac71d44455a62c
- Size
  
  4.1MB
- MD5
  
  b9b1445a734df05a0e10c6f1ad1acb3a
- SHA1
  
  785e1bba6b7ec1c8902fd67662c5bd2a604c94e4
- SHA256
  
  dc3aeb0664578d0ff8d0b9d4384f3d048a58f01ec17315ec3aac71d44455a62c
- SHA512
  
  31e2acc5fdd20d920d151541d68d075d683e0b9b276e028c69712aeb36e2249a9dd7acc736aa178480ba06efa447c684b36f1273cc0d4ce5f73ddb922c9cafea
- SSDEEP
  
  98304:hRW2gSRW2gdpRW2gSRW2gdjQ0KaRW2gy0prO6:iRsRZQ06BF1
Score

7^/10

discovery persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2