8d5cb5c88889b01277ffcb87a84f5a73fe36a780e0c23acd9962b71ad4ed13e9 | Triage

Sharing

General

Target

8d5cb5c88889b01277ffcb87a84f5a73fe36a780e0c23acd9962b71ad4ed13e9
Size

144KB
Sample

240319-2dgx3saa8v
MD5

56c7efd471b03afa2dc4e431ab3fc8c1
SHA1

2e3b83b81b36309e0e7d29fb39fff89ce9ffae3c
SHA256

8d5cb5c88889b01277ffcb87a84f5a73fe36a780e0c23acd9962b71ad4ed13e9
SHA512

6f0ff013cb1392dfa5914385837b0a44971f65fc6b85c8aeef3a5698c98ba7d0536769e2b58f4773c1d27e58ff35a5f49cb2102608f917c2187fedec542858f0
SSDEEP

3072:iX4EQeEPamdSqR3A9eyBpwoTRBmDRGGurhUXvBj2QE2HegPL:flVSqR3AAPm7U5j2QE2+gT

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  8d5cb5c88889b01277ffcb87a84f5a73fe36a780e0c23acd9962b71ad4ed13e9
- Size
  
  144KB
- MD5
  
  56c7efd471b03afa2dc4e431ab3fc8c1
- SHA1
  
  2e3b83b81b36309e0e7d29fb39fff89ce9ffae3c
- SHA256
  
  8d5cb5c88889b01277ffcb87a84f5a73fe36a780e0c23acd9962b71ad4ed13e9
- SHA512
  
  6f0ff013cb1392dfa5914385837b0a44971f65fc6b85c8aeef3a5698c98ba7d0536769e2b58f4773c1d27e58ff35a5f49cb2102608f917c2187fedec542858f0
- SSDEEP
  
  3072:iX4EQeEPamdSqR3A9eyBpwoTRBmDRGGurhUXvBj2QE2HegPL:flVSqR3AAPm7U5j2QE2+gT
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2