8ec8b67ab301c0326ea8e4da9da55f4e6510a2d2a776016a2108d5f74665ac71 | Triage

Sharing

General

Target

8ec8b67ab301c0326ea8e4da9da55f4e6510a2d2a776016a2108d5f74665ac71
Size

340KB
Sample

240306-1nep2abc6z
MD5

b1fc8e7471a537f790070957ba21e616
SHA1

0b4dc7259b32c998845c9e4adf9899dfade0fffb
SHA256

8ec8b67ab301c0326ea8e4da9da55f4e6510a2d2a776016a2108d5f74665ac71
SHA512

1b82cac1413108b08b7e304b61f59a2f9828ff9cd33f7a414daa86f1f28668c806cf032c2f58eae652d99cae75a576cdb0e688910257c0208b3d1dbd0c289a9a
SSDEEP

6144:qLRbGGV2N/vg+3/fc/UmKyIxLDXXoq9FJZCUmKyIxLjh:dva32XXf9Do3i

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  8ec8b67ab301c0326ea8e4da9da55f4e6510a2d2a776016a2108d5f74665ac71
- Size
  
  340KB
- MD5
  
  b1fc8e7471a537f790070957ba21e616
- SHA1
  
  0b4dc7259b32c998845c9e4adf9899dfade0fffb
- SHA256
  
  8ec8b67ab301c0326ea8e4da9da55f4e6510a2d2a776016a2108d5f74665ac71
- SHA512
  
  1b82cac1413108b08b7e304b61f59a2f9828ff9cd33f7a414daa86f1f28668c806cf032c2f58eae652d99cae75a576cdb0e688910257c0208b3d1dbd0c289a9a
- SSDEEP
  
  6144:qLRbGGV2N/vg+3/fc/UmKyIxLDXXoq9FJZCUmKyIxLjh:dva32XXf9Do3i
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2