6917637aa820f5543b9c1d1b9da9d331a4f4639597c1ef757c3a605cb353747a | Triage

Sharing

General

Target

f620f6b100c02eb3ab459319c390df30N
Size

97KB
Sample

240909-be3ytstgrr
MD5

f620f6b100c02eb3ab459319c390df30
SHA1

631da5a6025be0aee96bb5482d8603a686aa9d53
SHA256

6917637aa820f5543b9c1d1b9da9d331a4f4639597c1ef757c3a605cb353747a
SHA512

df1cc327b81684eebc5082618cfb55dd539ab8687866c0ea480a472369eb75b0a4b9105b39f7948bb919fed08ea0de80d3542334634145c793aef037e8ebae36
SSDEEP

3072:iR6ec316R8Q4vBQoLJDn3/97lRihFmJXeK6:iRAgbMfVDnPVahFaeX

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  f620f6b100c02eb3ab459319c390df30N
- Size
  
  97KB
- MD5
  
  f620f6b100c02eb3ab459319c390df30
- SHA1
  
  631da5a6025be0aee96bb5482d8603a686aa9d53
- SHA256
  
  6917637aa820f5543b9c1d1b9da9d331a4f4639597c1ef757c3a605cb353747a
- SHA512
  
  df1cc327b81684eebc5082618cfb55dd539ab8687866c0ea480a472369eb75b0a4b9105b39f7948bb919fed08ea0de80d3542334634145c793aef037e8ebae36
- SSDEEP
  
  3072:iR6ec316R8Q4vBQoLJDn3/97lRihFmJXeK6:iRAgbMfVDnPVahFaeX
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence