General
-
Target
SynapseBootstrapper.exe
-
Size
85KB
-
Sample
241115-ae8zeavmdt
-
MD5
88d248ab797cd3bb5326d9bcb9c7059a
-
SHA1
2c93e4a9316b479dc2e8960c5550a63e95108d67
-
SHA256
ecb47d796f67b6282502c20373465b15b67328b0eda4e0f9da42e14aff83bbed
-
SHA512
e993f6d6bcae835b18c537c090fca5008b12bf7bb50c479dfcba44ffaddc5141c4e9721f8e61f0faf18d264900924459dd6a923facf9d82bf711982a2e404fba
-
SSDEEP
384:qpkJsuoIaoabgzltzVEIVpKjndlrZtbD7Gsp8N5F5+2/tKrD7Gsp8N5F5+2/tKkX:qWJHa7aQjzTGsU5R4GsU5R+RGq75RU
Static task
static1
Behavioral task
behavioral1
Sample
SynapseBootstrapper.exe
Resource
win11-20241007-en
Malware Config
Targets
-
-
Target
SynapseBootstrapper.exe
-
Size
85KB
-
MD5
88d248ab797cd3bb5326d9bcb9c7059a
-
SHA1
2c93e4a9316b479dc2e8960c5550a63e95108d67
-
SHA256
ecb47d796f67b6282502c20373465b15b67328b0eda4e0f9da42e14aff83bbed
-
SHA512
e993f6d6bcae835b18c537c090fca5008b12bf7bb50c479dfcba44ffaddc5141c4e9721f8e61f0faf18d264900924459dd6a923facf9d82bf711982a2e404fba
-
SSDEEP
384:qpkJsuoIaoabgzltzVEIVpKjndlrZtbD7Gsp8N5F5+2/tKrD7Gsp8N5F5+2/tKkX:qWJHa7aQjzTGsU5R4GsU5R+RGq75RU
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Modify Registry
1Subvert Trust Controls
1SIP and Trust Provider Hijacking
1Credential Access
Credentials from Password Stores
1Credentials from Web Browsers
1Unsecured Credentials
1Credentials In Files
1