8cf8a69bd64972152a3e443c3c1c33d6ea3df7934640a8249a2f0f7ea0419715 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8cf8a69bd64972152a3e443c3c1c33d6ea3df7934640a8249a2f0f7ea0419715
Size

208KB
Sample

221129-gd43dsea8z
MD5

3330403836e0825b4fedc773518764cd
SHA1

2a778cc113b3def2423489eb6591133e9b7e7f4a
SHA256

8cf8a69bd64972152a3e443c3c1c33d6ea3df7934640a8249a2f0f7ea0419715
SHA512

d51190884e8a1e6ce9337e4407de8ab07f4a0335b965871be89e6bee0a42ee901573efd3c42b3cea4093b7c4494f6e42d368c791ee1eb81b51e934d9a59fdb90
SSDEEP

3072:j2JPB2a+SQCu8gS530XNYkGHsu0yRVEA1Sby+4KC6HTJYn57W3jiJo30cCe7znzo:jSP/+SwSyYkGhV11SxFda57a/Jjrk

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  8cf8a69bd64972152a3e443c3c1c33d6ea3df7934640a8249a2f0f7ea0419715
- Size
  
  208KB
- MD5
  
  3330403836e0825b4fedc773518764cd
- SHA1
  
  2a778cc113b3def2423489eb6591133e9b7e7f4a
- SHA256
  
  8cf8a69bd64972152a3e443c3c1c33d6ea3df7934640a8249a2f0f7ea0419715
- SHA512
  
  d51190884e8a1e6ce9337e4407de8ab07f4a0335b965871be89e6bee0a42ee901573efd3c42b3cea4093b7c4494f6e42d368c791ee1eb81b51e934d9a59fdb90
- SSDEEP
  
  3072:j2JPB2a+SQCu8gS530XNYkGHsu0yRVEA1Sby+4KC6HTJYn57W3jiJo30cCe7znzo:jSP/+SwSyYkGhV11SxFda57a/Jjrk
Score

7^/10

persistence
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2