8cbe3f2030c37221edc54accf8e3480268eb8249ae5bdc073f61156ddd238624 | Triage

Sharing

General

Target

8cbe3f2030c37221edc54accf8e3480268eb8249ae5bdc073f61156ddd238624
Size

200KB
Sample

221123-zd9lzscf43
MD5

168c92aba433de9ae1d8a3f367037f85
SHA1

bd4d3fa50da4d57c5b8058a92469a425c9bd892c
SHA256

8cbe3f2030c37221edc54accf8e3480268eb8249ae5bdc073f61156ddd238624
SHA512

a402910b8f533da84394aeeaeabd781a83242b837d37ee6decae3ee0f55348b6430c9913be32781977bcc4ce4fe2d310dbc7863b7072598289d2d094373eb540
SSDEEP

3072:IY8VVINB143IWsaBy+d8tpyUC8nL4m+JJXNvdLBZfXD0D3jX61XFXwpZo4:2VA0XB0pyURLARdL/oqXFWD

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  8cbe3f2030c37221edc54accf8e3480268eb8249ae5bdc073f61156ddd238624
- Size
  
  200KB
- MD5
  
  168c92aba433de9ae1d8a3f367037f85
- SHA1
  
  bd4d3fa50da4d57c5b8058a92469a425c9bd892c
- SHA256
  
  8cbe3f2030c37221edc54accf8e3480268eb8249ae5bdc073f61156ddd238624
- SHA512
  
  a402910b8f533da84394aeeaeabd781a83242b837d37ee6decae3ee0f55348b6430c9913be32781977bcc4ce4fe2d310dbc7863b7072598289d2d094373eb540
- SSDEEP
  
  3072:IY8VVINB143IWsaBy+d8tpyUC8nL4m+JJXNvdLBZfXD0D3jX61XFXwpZo4:2VA0XB0pyURLARdL/oqXFWD
Score

8^/10

persistence
- Blocklisted process makes network request
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2