3664c4fc73d7ad71677ec07a7c03db6a5a501f797a16aa37cef0908d6a903708 | Triage

Sharing

General

Target

3664c4fc73d7ad71677ec07a7c03db6a5a501f797a16aa37cef0908d6a903708
Size

1000KB
Sample

240823-yeyqfavdqq
MD5

379c3fd0a706cf853a54eea4c6d3600f
SHA1

4ab5d4df1af9a14b61cd382294f2c87d5e78064b
SHA256

3664c4fc73d7ad71677ec07a7c03db6a5a501f797a16aa37cef0908d6a903708
SHA512

bebca3b4dadc7e443069ba21e27ddba8655f234e6c342f975ae01605d21033bd636540c78393b23eef95d9540c7d68f56eb0ff6f7ffc36170618b629c3bf1e92
SSDEEP

12288:3zrHTg6bo3TtHBFLPj3TmLnWrOxNuxC97hFq9o7:3nHTgTtHBFLPj368MoC9Dq9o7

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  3664c4fc73d7ad71677ec07a7c03db6a5a501f797a16aa37cef0908d6a903708
- Size
  
  1000KB
- MD5
  
  379c3fd0a706cf853a54eea4c6d3600f
- SHA1
  
  4ab5d4df1af9a14b61cd382294f2c87d5e78064b
- SHA256
  
  3664c4fc73d7ad71677ec07a7c03db6a5a501f797a16aa37cef0908d6a903708
- SHA512
  
  bebca3b4dadc7e443069ba21e27ddba8655f234e6c342f975ae01605d21033bd636540c78393b23eef95d9540c7d68f56eb0ff6f7ffc36170618b629c3bf1e92
- SSDEEP
  
  12288:3zrHTg6bo3TtHBFLPj3TmLnWrOxNuxC97hFq9o7:3nHTgTtHBFLPj368MoC9Dq9o7
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence