c312a30fffb4f17d974966cdc0e4a04424012aef01fa4c97407c7a7a6d0ebf4e | Triage

Sharing

General

Target

c312a30fffb4f17d974966cdc0e4a04424012aef01fa4c97407c7a7a6d0ebf4e
Size

93KB
Sample

240824-cq3ymszhqe
MD5

befa1c54649aae1b2058e01aeb062a4a
SHA1

299f79a8bfdef911a25bd25d0f2334baaafe0b7d
SHA256

c312a30fffb4f17d974966cdc0e4a04424012aef01fa4c97407c7a7a6d0ebf4e
SHA512

a90b710dc4a9ead83c558c21bb62fb4fa4ddc2bf42da34d283bb04338f9e8962a397c26302a70fa74169edd49f2ff67c7de629cd2ca763b1e6397868e5b0defd
SSDEEP

1536:x/c7E1GRH/8dY++4XnUpjoLI4mYb+w+lWcqLS6/CTEjiwg58:x0ZRH/8R/UdmI4gWw6aYY58

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  c312a30fffb4f17d974966cdc0e4a04424012aef01fa4c97407c7a7a6d0ebf4e
- Size
  
  93KB
- MD5
  
  befa1c54649aae1b2058e01aeb062a4a
- SHA1
  
  299f79a8bfdef911a25bd25d0f2334baaafe0b7d
- SHA256
  
  c312a30fffb4f17d974966cdc0e4a04424012aef01fa4c97407c7a7a6d0ebf4e
- SHA512
  
  a90b710dc4a9ead83c558c21bb62fb4fa4ddc2bf42da34d283bb04338f9e8962a397c26302a70fa74169edd49f2ff67c7de629cd2ca763b1e6397868e5b0defd
- SSDEEP
  
  1536:x/c7E1GRH/8dY++4XnUpjoLI4mYb+w+lWcqLS6/CTEjiwg58:x0ZRH/8R/UdmI4gWw6aYY58
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence