8bbdcdf049738fe92b23e27bc2e533af567f52c8a1073d0d34748ab721a2321f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8bbdcdf049738fe92b23e27bc2e533af567f52c8a1073d0d34748ab721a2321f
Size

2.7MB
Sample

240319-xr5h3sdc3w
MD5

a39fc9b6591f325c5265933bc1770b23
SHA1

b6bda30ae5d97585c93389519d180992fb84642d
SHA256

8bbdcdf049738fe92b23e27bc2e533af567f52c8a1073d0d34748ab721a2321f
SHA512

ad8c0706e2322aa52d2e03172eae923fb5230118e1aaa16a2964ab4720e96d8d70e5c111fc917f8c53072c4e0c4179c879565be384be5b22e05fc7208600029b
SSDEEP

49152:Th8V8W7BqrjBTKyUnMKBzCQxbvQ/qpyr0kaMpx1PGE7KIgTcKFdJhks:Th8VlFqrjBTKyU62bvQ/qpyr0kaMP4Ep

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  8bbdcdf049738fe92b23e27bc2e533af567f52c8a1073d0d34748ab721a2321f
- Size
  
  2.7MB
- MD5
  
  a39fc9b6591f325c5265933bc1770b23
- SHA1
  
  b6bda30ae5d97585c93389519d180992fb84642d
- SHA256
  
  8bbdcdf049738fe92b23e27bc2e533af567f52c8a1073d0d34748ab721a2321f
- SHA512
  
  ad8c0706e2322aa52d2e03172eae923fb5230118e1aaa16a2964ab4720e96d8d70e5c111fc917f8c53072c4e0c4179c879565be384be5b22e05fc7208600029b
- SSDEEP
  
  49152:Th8V8W7BqrjBTKyUnMKBzCQxbvQ/qpyr0kaMpx1PGE7KIgTcKFdJhks:Th8VlFqrjBTKyU62bvQ/qpyr0kaMP4Ep
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2