e3497b31e0871e96ae8ddbb51c23824a2557c3491d0eb7bb5b202178ff347846 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e3497b31e0871e96ae8ddbb51c23824a2557c3491d0eb7bb5b202178ff347846
Size

384KB
Sample

240824-fz37jswhnj
MD5

3d1c52ada316e9456a11ed5170b0d97d
SHA1

8c9b22f479e6d241cbb0270897ba86e5fef31afc
SHA256

e3497b31e0871e96ae8ddbb51c23824a2557c3491d0eb7bb5b202178ff347846
SHA512

03cabddf1f51842739a31484d5a66068e6dd14de8ac53975ed8e44b245c4963b82af795d4c5eb159a352e24c5966c67ca5969d2816edf68245530d983687b642
SSDEEP

6144:r4lfcH7nBDh91fziBjJ28SeNpgdyuH1lZfRo0V8JcgE+ezpg12:r4e7BDh91feBjA87g7/VycgE82

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  e3497b31e0871e96ae8ddbb51c23824a2557c3491d0eb7bb5b202178ff347846
- Size
  
  384KB
- MD5
  
  3d1c52ada316e9456a11ed5170b0d97d
- SHA1
  
  8c9b22f479e6d241cbb0270897ba86e5fef31afc
- SHA256
  
  e3497b31e0871e96ae8ddbb51c23824a2557c3491d0eb7bb5b202178ff347846
- SHA512
  
  03cabddf1f51842739a31484d5a66068e6dd14de8ac53975ed8e44b245c4963b82af795d4c5eb159a352e24c5966c67ca5969d2816edf68245530d983687b642
- SSDEEP
  
  6144:r4lfcH7nBDh91fziBjJ28SeNpgdyuH1lZfRo0V8JcgE+ezpg12:r4e7BDh91feBjA87g7/VycgE82
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence