3fb027908d5e76d593b0f2df2f6e43fd920e7655589f8ef3a12ca889707e2cd3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3fb027908d5e76d593b0f2df2f6e43fd920e7655589f8ef3a12ca889707e2cd3
Size

29KB
Sample

240911-zkpv6asbjl
MD5

34635aa126263492407af96cbcc60fbf
SHA1

8122bee0499bd8219654af7512b906a50c6e4c27
SHA256

3fb027908d5e76d593b0f2df2f6e43fd920e7655589f8ef3a12ca889707e2cd3
SHA512

37757c1d48e791ae622fa878d50ae0eb4907d1a63c4d91e5cb316e810ce732261efac9d450f0ba2d26d36cd1620c427566259dbc38c40de1876f2de75d113b94
SSDEEP

768:PVEHJqjHyGvwFylDpulVSQJrE/2QmlCYZUTXj6QgI:PH2nylslwHCCL9

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  3fb027908d5e76d593b0f2df2f6e43fd920e7655589f8ef3a12ca889707e2cd3
- Size
  
  29KB
- MD5
  
  34635aa126263492407af96cbcc60fbf
- SHA1
  
  8122bee0499bd8219654af7512b906a50c6e4c27
- SHA256
  
  3fb027908d5e76d593b0f2df2f6e43fd920e7655589f8ef3a12ca889707e2cd3
- SHA512
  
  37757c1d48e791ae622fa878d50ae0eb4907d1a63c4d91e5cb316e810ce732261efac9d450f0ba2d26d36cd1620c427566259dbc38c40de1876f2de75d113b94
- SSDEEP
  
  768:PVEHJqjHyGvwFylDpulVSQJrE/2QmlCYZUTXj6QgI:PH2nylslwHCCL9
Score

7^/10

discovery persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence