3bf79f677d161f63a8b8a83a4ce8986f26eb33f5167ae106ba434320fe89a576 | Triage

Resubmissions

02/10/2024, 18:15

241002-wvyn9stdkb 8

02/10/2024, 18:11

241002-ws2m5stclc 8

Sharing

Copy URL Twitter E-mail

General

Target

kdmapper.zip
Size

56KB
Sample

241002-ws2m5stclc
MD5

10ae42406981bdf7801505e05a6d438e
SHA1

b56e0b728b29f69c83a3614c515a76e621796efa
SHA256

3bf79f677d161f63a8b8a83a4ce8986f26eb33f5167ae106ba434320fe89a576
SHA512

665e6ff4552ecf312f7a87fd106e0a532b1675d67820ae6c4ce133f93329039ec821987c98dcce034f8ed1d55e55b01461505b54b3967c871145da5cca680fe8
SSDEEP

1536:aI8AQfrWxLSxwqqowVorpuISEpxIVsa07FCJ3jXJVm1DJNWlk:efyxLUwvorpHSEpxLaUFEzXfm0lk

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  kdmapper.zip
- Size
  
  56KB
- MD5
  
  10ae42406981bdf7801505e05a6d438e
- SHA1
  
  b56e0b728b29f69c83a3614c515a76e621796efa
- SHA256
  
  3bf79f677d161f63a8b8a83a4ce8986f26eb33f5167ae106ba434320fe89a576
- SHA512
  
  665e6ff4552ecf312f7a87fd106e0a532b1675d67820ae6c4ce133f93329039ec821987c98dcce034f8ed1d55e55b01461505b54b3967c871145da5cca680fe8
- SSDEEP
  
  1536:aI8AQfrWxLSxwqqowVorpuISEpxIVsa07FCJ3jXJVm1DJNWlk:efyxLUwvorpHSEpxLaUFEzXfm0lk
Score

8^/10

persistence
- Sets service image path in registry
  persistence
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2