8e2cd689da5c89bf1b1667a1227a432c1d56b5b5649af653c79113f92a30c144 | Triage

Sharing

General

Target

8e2cd689da5c89bf1b1667a1227a432c1d56b5b5649af653c79113f92a30c144
Size

368KB
Sample

240409-1psnaada84
MD5

15315905f04353fb403ee0663e5d740d
SHA1

a6ce2306943e216dd3100c3c19acc93913fca2dd
SHA256

8e2cd689da5c89bf1b1667a1227a432c1d56b5b5649af653c79113f92a30c144
SHA512

bac4da13cce71d6eeecffa193513b29caba3f85941ea5148d145e67cd4c9583f71545729e274eb5fb4a7a061f7693c885c506394fa2d293840c8df13de450401
SSDEEP

6144:yC/+cijE1zE4f9FIUpOVw86CmOJfTo9FIUIhrcflDMxy9FIUpOVw86CmOJfTo9Fv:H/joEuaAD6RrI1+lDMEAD6Rr2NWL

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  8e2cd689da5c89bf1b1667a1227a432c1d56b5b5649af653c79113f92a30c144
- Size
  
  368KB
- MD5
  
  15315905f04353fb403ee0663e5d740d
- SHA1
  
  a6ce2306943e216dd3100c3c19acc93913fca2dd
- SHA256
  
  8e2cd689da5c89bf1b1667a1227a432c1d56b5b5649af653c79113f92a30c144
- SHA512
  
  bac4da13cce71d6eeecffa193513b29caba3f85941ea5148d145e67cd4c9583f71545729e274eb5fb4a7a061f7693c885c506394fa2d293840c8df13de450401
- SSDEEP
  
  6144:yC/+cijE1zE4f9FIUpOVw86CmOJfTo9FIUIhrcflDMxy9FIUpOVw86CmOJfTo9Fv:H/joEuaAD6RrI1+lDMEAD6Rr2NWL
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2