87fce4a9bf5b5a94b0a722c3061fd931a2fadd301880801b64a1e78d79bb67c5 | Triage

Sharing

General

Target

8b95e282a3fefcee4d094d127f67c9e4.exe
Size

401KB
Sample

210422-vgp9z5dkjs
MD5

8b95e282a3fefcee4d094d127f67c9e4
SHA1

916dcb8bded24f04f3c9dad9d5371495a2b8e6a9
SHA256

87fce4a9bf5b5a94b0a722c3061fd931a2fadd301880801b64a1e78d79bb67c5
SHA512

8e265c4861f9d10dbbb1cdbaa93d8e698371908835f3ba2554eb8d1b03b9f5955f1ca09219cc99efeccf708c20f605ffb5154c10e3a686a7c538d2e0699bf487

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  8b95e282a3fefcee4d094d127f67c9e4.exe
- Size
  
  401KB
- MD5
  
  8b95e282a3fefcee4d094d127f67c9e4
- SHA1
  
  916dcb8bded24f04f3c9dad9d5371495a2b8e6a9
- SHA256
  
  87fce4a9bf5b5a94b0a722c3061fd931a2fadd301880801b64a1e78d79bb67c5
- SHA512
  
  8e265c4861f9d10dbbb1cdbaa93d8e698371908835f3ba2554eb8d1b03b9f5955f1ca09219cc99efeccf708c20f605ffb5154c10e3a686a7c538d2e0699bf487
Score

8^/10

persistence
- Executes dropped EXE
- Deletes itself
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2