8b87ddae56f40b5c06027bdce55895cb02497c48f76e8115561b71e8ada540bd | Triage

Sharing

General

Target

8b87ddae56f40b5c06027bdce55895cb02497c48f76e8115561b71e8ada540bd
Size

1.9MB
Sample

230209-bc2b8acd7w
MD5

df4f76f0945c408c8affa1651b485e1c
SHA1

aa30cb6f1af6d55946a291ba2533510171850cf2
SHA256

8b87ddae56f40b5c06027bdce55895cb02497c48f76e8115561b71e8ada540bd
SHA512

6c243813357e92532cd69e0fef665e84701ca4e00d931d41fcdacc58a71311e64982d57d5432af81326c2eb46e7ee9e92cda3eff5875c87ce2ec511fc817387a
SSDEEP

49152:PQiakD4RSleOmqKc7WhJW149Mo3aXsvWByIsOlOpXe:PQSD4Mlt7514k8rIsOlyO

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  8b87ddae56f40b5c06027bdce55895cb02497c48f76e8115561b71e8ada540bd
- Size
  
  1.9MB
- MD5
  
  df4f76f0945c408c8affa1651b485e1c
- SHA1
  
  aa30cb6f1af6d55946a291ba2533510171850cf2
- SHA256
  
  8b87ddae56f40b5c06027bdce55895cb02497c48f76e8115561b71e8ada540bd
- SHA512
  
  6c243813357e92532cd69e0fef665e84701ca4e00d931d41fcdacc58a71311e64982d57d5432af81326c2eb46e7ee9e92cda3eff5875c87ce2ec511fc817387a
- SSDEEP
  
  49152:PQiakD4RSleOmqKc7WhJW149Mo3aXsvWByIsOlOpXe:PQSD4Mlt7514k8rIsOlyO
Score

7^/10

persistence
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1