8c5a74b614628b6bf7799afadf513adc483943d60fa1002189030afbf42b04d3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8c5a74b614628b6bf7799afadf513adc483943d60fa1002189030afbf42b04d3
Size

1.8MB
Sample

230828-wpnl4sgh8y
MD5

08a7481c0cab5e4964e5c02a2069cd35
SHA1

5f89817d7373ce51c87dd61a37261b4a9902884d
SHA256

8c5a74b614628b6bf7799afadf513adc483943d60fa1002189030afbf42b04d3
SHA512

a6ec7d0c3d8f97bcc53a56a609d8df8102fe3b65faac0a81f0142f3bf4499e50d442fa454884750c8a7a281c0d1913d8360f749c99fb23e290564b203ae3fdee
SSDEEP

24576:6lKmygBrATMXoRnHPWwwMp6aIY4In2VSfAGyuP4SLhSJ1DFe/ZTAnWgMX7LxXJC9:wWG47xIY4u2wfj4SLaReBT/nX7LxXJ

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  8c5a74b614628b6bf7799afadf513adc483943d60fa1002189030afbf42b04d3
- Size
  
  1.8MB
- MD5
  
  08a7481c0cab5e4964e5c02a2069cd35
- SHA1
  
  5f89817d7373ce51c87dd61a37261b4a9902884d
- SHA256
  
  8c5a74b614628b6bf7799afadf513adc483943d60fa1002189030afbf42b04d3
- SHA512
  
  a6ec7d0c3d8f97bcc53a56a609d8df8102fe3b65faac0a81f0142f3bf4499e50d442fa454884750c8a7a281c0d1913d8360f749c99fb23e290564b203ae3fdee
- SSDEEP
  
  24576:6lKmygBrATMXoRnHPWwwMp6aIY4In2VSfAGyuP4SLhSJ1DFe/ZTAnWgMX7LxXJC9:wWG47xIY4u2wfj4SLaReBT/nX7LxXJ
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2