3b4b6de3af97aa6032e8900eca85deb4d0904864f4bbe81363699d3eb618707c | Triage

Sharing

General

Target

3b4b6de3af97aa6032e8900eca85deb4d0904864f4bbe81363699d3eb618707cN
Size

59KB
Sample

240918-3fcltayfnm
MD5

de8e88cfbd70b65be465b4c4bae5d8f0
SHA1

db537c74b5f2a8878e5d267cebcfb1e80241a279
SHA256

3b4b6de3af97aa6032e8900eca85deb4d0904864f4bbe81363699d3eb618707c
SHA512

0e829808817df315a24c6ebdc1264e2c110c649f322d4d19c59f62d65f3bdd97f2ce41b0675995ab2a390e7b457bcab71ef5b3d6ae1e1da290e59c38b6c9c3cf
SSDEEP

768:L4ZaIfYkdd6sh0aCXNr2g+vnyNySU8cwIOrJv9zVjz0zbB0sQO9pjwAh+2p/1H5j:cZ0bpWyNXcjMVBHA90Fcpjwo+2LGO

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  3b4b6de3af97aa6032e8900eca85deb4d0904864f4bbe81363699d3eb618707cN
- Size
  
  59KB
- MD5
  
  de8e88cfbd70b65be465b4c4bae5d8f0
- SHA1
  
  db537c74b5f2a8878e5d267cebcfb1e80241a279
- SHA256
  
  3b4b6de3af97aa6032e8900eca85deb4d0904864f4bbe81363699d3eb618707c
- SHA512
  
  0e829808817df315a24c6ebdc1264e2c110c649f322d4d19c59f62d65f3bdd97f2ce41b0675995ab2a390e7b457bcab71ef5b3d6ae1e1da290e59c38b6c9c3cf
- SSDEEP
  
  768:L4ZaIfYkdd6sh0aCXNr2g+vnyNySU8cwIOrJv9zVjz0zbB0sQO9pjwAh+2p/1H5j:cZ0bpWyNXcjMVBHA90Fcpjwo+2LGO
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence