8cb9fd984af3c5cc1fd2a80741765500d20bc3af52d53393eece2c0e4e8c1d81 | Triage

Resubmissions

09/02/2023, 03:49

230209-edp75aag79 7

09/02/2023, 03:37

230209-d6yvasab8y 7

Sharing

Copy URL Twitter E-mail

General

Target

8cb9fd984af3c5cc1fd2a80741765500d20bc3af52d53393eece2c0e4e8c1d81
Size

11.2MB
Sample

230209-d6yvasab8y
MD5

debd4594073103dc1b7eead1de6a4ecd
SHA1

c8c6a277b418e8607d5f5460ea9e0b94214a7df0
SHA256

8cb9fd984af3c5cc1fd2a80741765500d20bc3af52d53393eece2c0e4e8c1d81
SHA512

a6f2481d784fe466f85965ac517a60d45ddcfe1c25906a5372d2fa9aff443bb799fd04af95c12512740113a5a97680fe8c4fdd1b88d4a84e5a246dc77c4f9a2a
SSDEEP

196608:c0arVqtrNb2tEDtrzhhxSZld/FQPGZ6yfqUJeRFgg0pObHwym6VOC/tNdD:c00Vc0tERf1EEGZ6yfUz6pObO6o

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  8cb9fd984af3c5cc1fd2a80741765500d20bc3af52d53393eece2c0e4e8c1d81
- Size
  
  11.2MB
- MD5
  
  debd4594073103dc1b7eead1de6a4ecd
- SHA1
  
  c8c6a277b418e8607d5f5460ea9e0b94214a7df0
- SHA256
  
  8cb9fd984af3c5cc1fd2a80741765500d20bc3af52d53393eece2c0e4e8c1d81
- SHA512
  
  a6f2481d784fe466f85965ac517a60d45ddcfe1c25906a5372d2fa9aff443bb799fd04af95c12512740113a5a97680fe8c4fdd1b88d4a84e5a246dc77c4f9a2a
- SSDEEP
  
  196608:c0arVqtrNb2tEDtrzhhxSZld/FQPGZ6yfqUJeRFgg0pObHwym6VOC/tNdD:c00Vc0tERf1EEGZ6yfUz6pObO6o
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2