8e051762af9e788f3a4c3d29171e995a4fcc0ed8f4516a015a06a20c2465c1b5 | Triage

Sharing

General

Target

8e051762af9e788f3a4c3d29171e995a4fcc0ed8f4516a015a06a20c2465c1b5
Size

2.1MB
Sample

221123-k2nbbsaa25
MD5

51cbf4fc5c5b7631ccc79e268da1b515
SHA1

b0a6392f2950d072da1ac99025e57fc05bf397a4
SHA256

8e051762af9e788f3a4c3d29171e995a4fcc0ed8f4516a015a06a20c2465c1b5
SHA512

157d0dd07d0da51a41c6a197e32f3debe75bdbecee5b4ae63407a6b46c0d217364eaff45c3539facd52cd3f9f08a19354a6143b6123c2d13b5b274491b8677e3
SSDEEP

24576:EVYbWzOKQ220xXlH1QnxBdabsM8KGH7Co0OLeGrIocE5lArjPPc:1WzOM20Zlcd08KGbNLeGMb4unc

Score

6^/10

discovery persistence

Malware Config

Targets

- Target
  
  8e051762af9e788f3a4c3d29171e995a4fcc0ed8f4516a015a06a20c2465c1b5
- Size
  
  2.1MB
- MD5
  
  51cbf4fc5c5b7631ccc79e268da1b515
- SHA1
  
  b0a6392f2950d072da1ac99025e57fc05bf397a4
- SHA256
  
  8e051762af9e788f3a4c3d29171e995a4fcc0ed8f4516a015a06a20c2465c1b5
- SHA512
  
  157d0dd07d0da51a41c6a197e32f3debe75bdbecee5b4ae63407a6b46c0d217364eaff45c3539facd52cd3f9f08a19354a6143b6123c2d13b5b274491b8677e3
- SSDEEP
  
  24576:EVYbWzOKQ220xXlH1QnxBdabsM8KGH7Co0OLeGrIocE5lArjPPc:1WzOM20Zlcd08KGbNLeGMb4unc
Score

6^/10

discovery persistence
- Adds Run key to start application
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence