3df12c6459315213c0dfa95740f7b575c5c49ccf8a0c65a80d47d4d4ad834e02 | Triage

Sharing

General

Target

3df12c6459315213c0dfa95740f7b575c5c49ccf8a0c65a80d47d4d4ad834e02
Size

64KB
Sample

240823-yztl8atfkc
MD5

7da41dd9d83e41d0b0d58fb17e387ff4
SHA1

699268f9c481319f031d2a5b74adfcf75796205d
SHA256

3df12c6459315213c0dfa95740f7b575c5c49ccf8a0c65a80d47d4d4ad834e02
SHA512

e8cf5c34a1ffe95e696e844d7dfbd1549a847905a79d78a32954a2bf7680aef9030fc89764d35c7f0a3a97fa867738b2eb83036b52bc2e3d808d47284df09a50
SSDEEP

768:pr9311ZR1I+ZomRcJ9tdF+GnnwFW8yvgCQ2hLPi4IZCOUT/1H58AXdnhgoEqErtq:pplTRm465FVcW8yTtFheSV1iL+iALMH6

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  3df12c6459315213c0dfa95740f7b575c5c49ccf8a0c65a80d47d4d4ad834e02
- Size
  
  64KB
- MD5
  
  7da41dd9d83e41d0b0d58fb17e387ff4
- SHA1
  
  699268f9c481319f031d2a5b74adfcf75796205d
- SHA256
  
  3df12c6459315213c0dfa95740f7b575c5c49ccf8a0c65a80d47d4d4ad834e02
- SHA512
  
  e8cf5c34a1ffe95e696e844d7dfbd1549a847905a79d78a32954a2bf7680aef9030fc89764d35c7f0a3a97fa867738b2eb83036b52bc2e3d808d47284df09a50
- SSDEEP
  
  768:pr9311ZR1I+ZomRcJ9tdF+GnnwFW8yvgCQ2hLPi4IZCOUT/1H58AXdnhgoEqErtq:pplTRm465FVcW8yTtFheSV1iL+iALMH6
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence