8e8e647de94da7bf73ce5c62e5bbe687692f5f783ca94f8337281fcca4e384d7 | Triage

Sharing

General

Target

8930d9c5e595826dded78ed9a88b1f41.exe
Size

928KB
Sample

210727-zrgktgw1ms
MD5

8930d9c5e595826dded78ed9a88b1f41
SHA1

e4a704f1ea2746e225351da3d5950a27fd607430
SHA256

8e8e647de94da7bf73ce5c62e5bbe687692f5f783ca94f8337281fcca4e384d7
SHA512

592b15edba798ddff0dd7e5ea478f6e8607b02ff8c30fee7c58ad98d4624fa2f36f14372817e955e42ea3ebcde83d5740a1e3cd94a501eac07a64f9f4261821a

Score

10^/10

persistence suricata

Malware Config

Targets

- Target
  
  8930d9c5e595826dded78ed9a88b1f41.exe
- Size
  
  928KB
- MD5
  
  8930d9c5e595826dded78ed9a88b1f41
- SHA1
  
  e4a704f1ea2746e225351da3d5950a27fd607430
- SHA256
  
  8e8e647de94da7bf73ce5c62e5bbe687692f5f783ca94f8337281fcca4e384d7
- SHA512
  
  592b15edba798ddff0dd7e5ea478f6e8607b02ff8c30fee7c58ad98d4624fa2f36f14372817e955e42ea3ebcde83d5740a1e3cd94a501eac07a64f9f4261821a
Score

10^/10

persistence suricata
- suricata: ET MALWARE Generic njRAT/Bladabindi CnC Activity (ll)
  suricata
- Executes dropped EXE
- Drops startup file
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Hidden Files and Directories

Privilege Escalation

Defense Evasion

Modify Registry

Hidden Files and Directories

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2

persistencesuricata