1482a42fd523cb6b61d0c199398d4c8bead74a0ffd79e4148db1fece4fff7d84 | Triage

Sharing

General

Target

3f97b152c75dfd92e3c2434ddc2a9a90N
Size

64KB
Sample

240911-3j847azbje
MD5

3f97b152c75dfd92e3c2434ddc2a9a90
SHA1

9647f68385fb4a4e66c0aacdc0d4fe404db3f5bd
SHA256

1482a42fd523cb6b61d0c199398d4c8bead74a0ffd79e4148db1fece4fff7d84
SHA512

c14ade3b3c6e23419e7205fefd67e46bb76c9361403d9c776b0029c668113d4b16a05d3c00c0a297ff5ece839877b6b80f03e07214c1e93c4007bfa60d0c321b
SSDEEP

768:/YSoZNIYe3mBGUIxTmTdfSPGzezk8P+hWQz6/gXqyYfA4I78xgBAW2p/1H5wRxXG:L0Ng3+RRSdgf/73YrzxA2LiAMCeW

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  3f97b152c75dfd92e3c2434ddc2a9a90N
- Size
  
  64KB
- MD5
  
  3f97b152c75dfd92e3c2434ddc2a9a90
- SHA1
  
  9647f68385fb4a4e66c0aacdc0d4fe404db3f5bd
- SHA256
  
  1482a42fd523cb6b61d0c199398d4c8bead74a0ffd79e4148db1fece4fff7d84
- SHA512
  
  c14ade3b3c6e23419e7205fefd67e46bb76c9361403d9c776b0029c668113d4b16a05d3c00c0a297ff5ece839877b6b80f03e07214c1e93c4007bfa60d0c321b
- SSDEEP
  
  768:/YSoZNIYe3mBGUIxTmTdfSPGzezk8P+hWQz6/gXqyYfA4I78xgBAW2p/1H5wRxXG:L0Ng3+RRSdgf/73YrzxA2LiAMCeW
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence