322defdaf0fad6762097836ffb0596b411cd72c874eeeed5fc25529ea0166336 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

322defdaf0fad6762097836ffb0596b411cd72c874eeeed5fc25529ea0166336
Size

1.2MB
Sample

240914-yssfkstaml
MD5

90cff91e464d2df0efc1db8ec6e50c55
SHA1

47f7d18f2fb79ebed97f864e79cdd57ab96979e4
SHA256

322defdaf0fad6762097836ffb0596b411cd72c874eeeed5fc25529ea0166336
SHA512

2078928788ebb50d077c1385ef9f93f30745b55d3375300ed3bcec0256864319feb079bdb9f20290a92aaffba9c06d5439b515e26d73d20a459d2886e66d2d43
SSDEEP

12288:Z86pQjfvBDVqvQ6Ivxv26IveDVqvQ6IvpW1nvv6IveDVqvQ6IvYvc6IveDVqvQ6T:w5hwq5hVW1nq5h3q5hL6X1q5h3q5h

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  322defdaf0fad6762097836ffb0596b411cd72c874eeeed5fc25529ea0166336
- Size
  
  1.2MB
- MD5
  
  90cff91e464d2df0efc1db8ec6e50c55
- SHA1
  
  47f7d18f2fb79ebed97f864e79cdd57ab96979e4
- SHA256
  
  322defdaf0fad6762097836ffb0596b411cd72c874eeeed5fc25529ea0166336
- SHA512
  
  2078928788ebb50d077c1385ef9f93f30745b55d3375300ed3bcec0256864319feb079bdb9f20290a92aaffba9c06d5439b515e26d73d20a459d2886e66d2d43
- SSDEEP
  
  12288:Z86pQjfvBDVqvQ6Ivxv26IveDVqvQ6IvpW1nvv6IveDVqvQ6IvYvc6IveDVqvQ6T:w5hwq5hVW1nq5h3q5hL6X1q5h3q5h
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence