8a877791dac6ef20c28c617fa6199cb97f13f4576b46841bad4c854ae9414849 | Triage

Sharing

General

Target

8a877791dac6ef20c28c617fa6199cb97f13f4576b46841bad4c854ae9414849
Size

1.5MB
Sample

240319-18va8ahh5y
MD5

3919f5842fb2e9af7b60275c03abeb79
SHA1

c8761041a97edb04a49a4417901824cdca9d729f
SHA256

8a877791dac6ef20c28c617fa6199cb97f13f4576b46841bad4c854ae9414849
SHA512

b9abccff048b58180c959a7f1d1b78bae1363edb41468da183784bf743952a0592e7f3de04a0ba0cc42179772ec54e5e3bb4773ba1fa31b7627d79a8fe36fffc
SSDEEP

12288:+QPbWGRdA6sQxuEuZH8WF50+OJ3BHCXwpnsKvNA+XTvZHWuEo3oWB+:3zecI50+YNpsKv2EvZHp3oWB+

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  8a877791dac6ef20c28c617fa6199cb97f13f4576b46841bad4c854ae9414849
- Size
  
  1.5MB
- MD5
  
  3919f5842fb2e9af7b60275c03abeb79
- SHA1
  
  c8761041a97edb04a49a4417901824cdca9d729f
- SHA256
  
  8a877791dac6ef20c28c617fa6199cb97f13f4576b46841bad4c854ae9414849
- SHA512
  
  b9abccff048b58180c959a7f1d1b78bae1363edb41468da183784bf743952a0592e7f3de04a0ba0cc42179772ec54e5e3bb4773ba1fa31b7627d79a8fe36fffc
- SSDEEP
  
  12288:+QPbWGRdA6sQxuEuZH8WF50+OJ3BHCXwpnsKvNA+XTvZHWuEo3oWB+:3zecI50+YNpsKv2EvZHp3oWB+
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2