3e3ad52b63fc50ef6222b030a116657ac49b45262fc7fb7c943ed94d8520ee08 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ebf68d85c5cf9c6eeee3826f830ac040N
Size

64KB
Sample

240912-aqymta1flm
MD5

ebf68d85c5cf9c6eeee3826f830ac040
SHA1

fb5b97f8f31e69e8a84527691469c0b55e56dc28
SHA256

3e3ad52b63fc50ef6222b030a116657ac49b45262fc7fb7c943ed94d8520ee08
SHA512

58ba90c45c3cbba9e5ffcfc8e30d4fd8cdb3a02d0d28e587752120c916efda34be1a6a8823c1d84272273f501908a473a99cf99a54def38424c6ea4f52da73e4
SSDEEP

1536:goTE1d/lZjlaB/McZnwkfwBPIpXyTka3ZuYDPf:un9Zj/ywefsZuY7f

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  ebf68d85c5cf9c6eeee3826f830ac040N
- Size
  
  64KB
- MD5
  
  ebf68d85c5cf9c6eeee3826f830ac040
- SHA1
  
  fb5b97f8f31e69e8a84527691469c0b55e56dc28
- SHA256
  
  3e3ad52b63fc50ef6222b030a116657ac49b45262fc7fb7c943ed94d8520ee08
- SHA512
  
  58ba90c45c3cbba9e5ffcfc8e30d4fd8cdb3a02d0d28e587752120c916efda34be1a6a8823c1d84272273f501908a473a99cf99a54def38424c6ea4f52da73e4
- SSDEEP
  
  1536:goTE1d/lZjlaB/McZnwkfwBPIpXyTka3ZuYDPf:un9Zj/ywefsZuY7f
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence