3f7f58dab1b547fbe2b5e960745e4e45d0e7d146071f3c1979798c46bb9101be | Triage

Sharing

General

Target

3f7f58dab1b547fbe2b5e960745e4e45d0e7d146071f3c1979798c46bb9101be
Size

1.6MB
Sample

240920-x9gvqstfne
MD5

da3e92866a2811f7b0bb027f566b86c0
SHA1

0c6f236adf20b6deef3e0ba92186e39b065bb959
SHA256

3f7f58dab1b547fbe2b5e960745e4e45d0e7d146071f3c1979798c46bb9101be
SHA512

1cd4c811ab9dbb2ca4b1af319a282c022887c8c5ee0bee823373350d2ca5edbce649ed5f58202779d51442747691d764920794f25485d4001f27f0cb2cc3a418
SSDEEP

12288:5SUtbSwwL2bWGRdA6sQhPbWGRdA6sQxuEuZH8WF50+OJ3BHCXwpnsKvNA+XTvZHO:FSwwL2vzecI50+YNpsKv2EvZHp3oWB+

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  3f7f58dab1b547fbe2b5e960745e4e45d0e7d146071f3c1979798c46bb9101be
- Size
  
  1.6MB
- MD5
  
  da3e92866a2811f7b0bb027f566b86c0
- SHA1
  
  0c6f236adf20b6deef3e0ba92186e39b065bb959
- SHA256
  
  3f7f58dab1b547fbe2b5e960745e4e45d0e7d146071f3c1979798c46bb9101be
- SHA512
  
  1cd4c811ab9dbb2ca4b1af319a282c022887c8c5ee0bee823373350d2ca5edbce649ed5f58202779d51442747691d764920794f25485d4001f27f0cb2cc3a418
- SSDEEP
  
  12288:5SUtbSwwL2bWGRdA6sQhPbWGRdA6sQxuEuZH8WF50+OJ3BHCXwpnsKvNA+XTvZHO:FSwwL2vzecI50+YNpsKv2EvZHp3oWB+
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence