8f1f4776ed32c360356802b1e312a4c77d3bcfb90d19eca043dbdd0a177e49df | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8f1f4776ed32c360356802b1e312a4c77d3bcfb90d19eca043dbdd0a177e49df
Size

781KB
Sample

240418-kqhxgagd58
MD5

5e9b7f75a10ad074034e5c5e51c4d62b
SHA1

303c0284be9b1746eda732524a830d05d68b2d89
SHA256

8f1f4776ed32c360356802b1e312a4c77d3bcfb90d19eca043dbdd0a177e49df
SHA512

f13ce52058220d81201e988779e4b63f6debb3c82dd9d5ddb8dd5362cf82506975b7bb120b588a1987d5338bae1caa6a83753b0925e7b1254591c3568d152324
SSDEEP

12288:4BVN4UPAYNj9hMKEzh0dljiZNMJCpqwV:4BVN4/YNj9h0z2Tu7MgpqwV

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  8f1f4776ed32c360356802b1e312a4c77d3bcfb90d19eca043dbdd0a177e49df
- Size
  
  781KB
- MD5
  
  5e9b7f75a10ad074034e5c5e51c4d62b
- SHA1
  
  303c0284be9b1746eda732524a830d05d68b2d89
- SHA256
  
  8f1f4776ed32c360356802b1e312a4c77d3bcfb90d19eca043dbdd0a177e49df
- SHA512
  
  f13ce52058220d81201e988779e4b63f6debb3c82dd9d5ddb8dd5362cf82506975b7bb120b588a1987d5338bae1caa6a83753b0925e7b1254591c3568d152324
- SSDEEP
  
  12288:4BVN4UPAYNj9hMKEzh0dljiZNMJCpqwV:4BVN4/YNj9h0z2Tu7MgpqwV
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2