8492eafcd08c58ffb5c461a6d14281bfab3aad7ac0079046f4286b8ed30f7f75 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8492eafcd08c58ffb5c461a6d14281bfab3aad7ac0079046f4286b8ed30f7f75
Size

3.6MB
Sample

221202-vhp1xsfe88
MD5

ad4f32604a2d2e6c6d2550c93e35e4da
SHA1

1fc7b569a33aad4c96c3de05db4f4d12cd6bf72e
SHA256

8492eafcd08c58ffb5c461a6d14281bfab3aad7ac0079046f4286b8ed30f7f75
SHA512

0cfc1ae366de951e715b6c7d9a1963d53494a56f8842a188f81356a27878f67f79502991384fbba08fd568108bcde8c5faaf1fbbc4d7e63dc2d7cf613005ff01
SSDEEP

98304:OJRtFhef27gMMMMMMMMMMcMMMMMMMMMMMMWMMMMMMMMMMMMOuR5I0k:OJLwDI0k

Score

6^/10

discovery persistence

Malware Config

Targets

- Target
  
  8492eafcd08c58ffb5c461a6d14281bfab3aad7ac0079046f4286b8ed30f7f75
- Size
  
  3.6MB
- MD5
  
  ad4f32604a2d2e6c6d2550c93e35e4da
- SHA1
  
  1fc7b569a33aad4c96c3de05db4f4d12cd6bf72e
- SHA256
  
  8492eafcd08c58ffb5c461a6d14281bfab3aad7ac0079046f4286b8ed30f7f75
- SHA512
  
  0cfc1ae366de951e715b6c7d9a1963d53494a56f8842a188f81356a27878f67f79502991384fbba08fd568108bcde8c5faaf1fbbc4d7e63dc2d7cf613005ff01
- SSDEEP
  
  98304:OJRtFhef27gMMMMMMMMMMcMMMMMMMMMMMMWMMMMMMMMMMMMOuR5I0k:OJLwDI0k
Score

6^/10

discovery persistence
- Adds Run key to start application
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence