General
-
Target
https://youtube.com/@boffy/
-
Sample
250120-f3dfastmap
Score
7/10
Malware Config
Targets
-
-
Target
https://youtube.com/@boffy/
Score7/10-
Credentials from Password Stores: Windows Credential Manager
Suspicious access to Credentials History.
-
Drops startup file
-
Executes dropped EXE
-
Adds Run key to start application
-
Drops desktop.ini file(s)
-
Drops autorun.inf file
Malware can abuse Windows Autorun to spread further via attached volumes.
-
Drops file in System32 directory
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Modify Registry
1Virtualization/Sandbox Evasion
1System Checks
1