1f3ddd1360cb0159aabc557fddedaacf55ad787706b6e0edf1239a05a69e9a74 | Triage

Sharing

General

Target

1f3ddd1360cb0159aabc557fddedaacf55ad787706b6e0edf1239a05a69e9a74.exe
Size

82KB
Sample

240908-byckzszapb
MD5

42051413954991a1edc817359b0852cd
SHA1

c8417e99712028e7b28aa92712425cbe051b9705
SHA256

1f3ddd1360cb0159aabc557fddedaacf55ad787706b6e0edf1239a05a69e9a74
SHA512

ecb2e9830061a8f7d8ddb352a0f4110e94417bd3f714f6fa4ce3fe7d5608ffbafde52f0237010d1f0eaf4469ce36467f12221950e6514909f956ef6ec5659544
SSDEEP

1536:0CjGDRjQHHdYC8HRdrtusm3E2L70spm6+wDSmQFN6TiN1sJtvQu:0CjG1jQadnwAspm6tm7N6TO1SpD

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  1f3ddd1360cb0159aabc557fddedaacf55ad787706b6e0edf1239a05a69e9a74.exe
- Size
  
  82KB
- MD5
  
  42051413954991a1edc817359b0852cd
- SHA1
  
  c8417e99712028e7b28aa92712425cbe051b9705
- SHA256
  
  1f3ddd1360cb0159aabc557fddedaacf55ad787706b6e0edf1239a05a69e9a74
- SHA512
  
  ecb2e9830061a8f7d8ddb352a0f4110e94417bd3f714f6fa4ce3fe7d5608ffbafde52f0237010d1f0eaf4469ce36467f12221950e6514909f956ef6ec5659544
- SSDEEP
  
  1536:0CjGDRjQHHdYC8HRdrtusm3E2L70spm6+wDSmQFN6TiN1sJtvQu:0CjG1jQadnwAspm6tm7N6TO1SpD
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence