8f686d605e251dcd9521c6cecc4c520db971643584a37d118c19d96f0d311fdf | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8f686d605e251dcd9521c6cecc4c520db971643584a37d118c19d96f0d311fdf
Size

100KB
Sample

221002-nqlvxadda9
MD5

5b7658f7c49801c30d72ffbe75ba7a91
SHA1

e6a82bc80354c8d7ad1b11aaa8bf5127bc9c5ee2
SHA256

8f686d605e251dcd9521c6cecc4c520db971643584a37d118c19d96f0d311fdf
SHA512

3723c39a1fbfee4d37e43f78fccf6969c6c3ab284fe5d1650f4c37293ed89c066030d008692af64a364249b56617408a7480d3f174219e1becb669711fa62dc0
SSDEEP

1536:zE3L2JugxhQR2TV8RRp0M22CRkisKld9:ziL82iV8RRp0MCxp

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  8f686d605e251dcd9521c6cecc4c520db971643584a37d118c19d96f0d311fdf
- Size
  
  100KB
- MD5
  
  5b7658f7c49801c30d72ffbe75ba7a91
- SHA1
  
  e6a82bc80354c8d7ad1b11aaa8bf5127bc9c5ee2
- SHA256
  
  8f686d605e251dcd9521c6cecc4c520db971643584a37d118c19d96f0d311fdf
- SHA512
  
  3723c39a1fbfee4d37e43f78fccf6969c6c3ab284fe5d1650f4c37293ed89c066030d008692af64a364249b56617408a7480d3f174219e1becb669711fa62dc0
- SSDEEP
  
  1536:zE3L2JugxhQR2TV8RRp0M22CRkisKld9:ziL82iV8RRp0MCxp
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2