b8cdf205f1e0e4f5c67133923135fab8644e775d56da7b11035fed8fc87ff98a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b8cdf205f1e0e4f5c67133923135fab8644e775d56da7b11035fed8fc87ff98a
Size

349KB
Sample

240315-28xxsafd26
MD5

5c5c9f91bbd4ed28dce87b73acb7922c
SHA1

42ac4228993729b0ad568efaa2b524a18ed4a3f9
SHA256

b8cdf205f1e0e4f5c67133923135fab8644e775d56da7b11035fed8fc87ff98a
SHA512

1dcb93d39e09864b48e9d492e1012f9b6e245641c82d18b5663be366715255e0540fb04a32376c005b4740e76959047eb0e2ee10484f997c41ffedb3596f3dde
SSDEEP

6144:A/GKgpvJPOwXYrMdlpfDFk/pB7gl0cziyqczZd7LFO3A9xoLBZ9oGnFnj+MpZfPX:l12wIKfDy/phgeczlqczZd7LFB3oFHo6

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  b8cdf205f1e0e4f5c67133923135fab8644e775d56da7b11035fed8fc87ff98a
- Size
  
  349KB
- MD5
  
  5c5c9f91bbd4ed28dce87b73acb7922c
- SHA1
  
  42ac4228993729b0ad568efaa2b524a18ed4a3f9
- SHA256
  
  b8cdf205f1e0e4f5c67133923135fab8644e775d56da7b11035fed8fc87ff98a
- SHA512
  
  1dcb93d39e09864b48e9d492e1012f9b6e245641c82d18b5663be366715255e0540fb04a32376c005b4740e76959047eb0e2ee10484f997c41ffedb3596f3dde
- SSDEEP
  
  6144:A/GKgpvJPOwXYrMdlpfDFk/pB7gl0cziyqczZd7LFO3A9xoLBZ9oGnFnj+MpZfPX:l12wIKfDy/phgeczlqczZd7LFB3oFHo6
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2