325dc356ed445c54b81662494b3ae5929301edfa89e9d6df9aa862c7b5ce4be9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8f2b952a458f345dd60dbd7aba0d73e6
Size

13KB
Sample

240204-pvc91ahdh6
MD5

8f2b952a458f345dd60dbd7aba0d73e6
SHA1

bc31b76de0ee005aac01c4928edb0475e944d19c
SHA256

325dc356ed445c54b81662494b3ae5929301edfa89e9d6df9aa862c7b5ce4be9
SHA512

8db51cb3d2e989b3f12c1db43d909bcdd7aa2afa9c40981bd30af6db063ce56a5d21b4ff6ca3f51e890912c36df5d2f83f37e0a4043d94f26a02f90bd2c097d3
SSDEEP

384:ys3cnjAFKWnMgHfHp1+EiISYZEyKJTKE9/0M:ysIAFKW7fp1+EVSYZNKJmF

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  8f2b952a458f345dd60dbd7aba0d73e6
- Size
  
  13KB
- MD5
  
  8f2b952a458f345dd60dbd7aba0d73e6
- SHA1
  
  bc31b76de0ee005aac01c4928edb0475e944d19c
- SHA256
  
  325dc356ed445c54b81662494b3ae5929301edfa89e9d6df9aa862c7b5ce4be9
- SHA512
  
  8db51cb3d2e989b3f12c1db43d909bcdd7aa2afa9c40981bd30af6db063ce56a5d21b4ff6ca3f51e890912c36df5d2f83f37e0a4043d94f26a02f90bd2c097d3
- SSDEEP
  
  384:ys3cnjAFKWnMgHfHp1+EiISYZEyKJTKE9/0M:ysIAFKW7fp1+EVSYZNKJmF
Score

7^/10

persistence
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2