8f579ecd6a82280691c4aa826dd83811d5bafdfff19284b1992b296f7f22ebc0 | Triage

Sharing

General

Target

8f579ecd6a82280691c4aa826dd83811d5bafdfff19284b1992b296f7f22ebc0
Size

186KB
Sample

240425-aqs3bscb66
MD5

ed26ab785883a048c84fa4ea1778e3f4
SHA1

69da3ae076dea5fa58524ddad4131a5b49c2e853
SHA256

8f579ecd6a82280691c4aa826dd83811d5bafdfff19284b1992b296f7f22ebc0
SHA512

ee4555de32594feee3feb959d6cd3197aa882d9a8231a1d4ce915f00bdf826255314463853498ebed646998e20a16b68323fd6110fd1d9b004bf48820188b055
SSDEEP

3072:rQm4M/yu0IRO8w2TFv+Y4H1vkF3VOMC4uMhZpMdoVBRDI+Vvlg3vG:rFlUcj9TF+Jk/4AcgHuv

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  8f579ecd6a82280691c4aa826dd83811d5bafdfff19284b1992b296f7f22ebc0
- Size
  
  186KB
- MD5
  
  ed26ab785883a048c84fa4ea1778e3f4
- SHA1
  
  69da3ae076dea5fa58524ddad4131a5b49c2e853
- SHA256
  
  8f579ecd6a82280691c4aa826dd83811d5bafdfff19284b1992b296f7f22ebc0
- SHA512
  
  ee4555de32594feee3feb959d6cd3197aa882d9a8231a1d4ce915f00bdf826255314463853498ebed646998e20a16b68323fd6110fd1d9b004bf48820188b055
- SSDEEP
  
  3072:rQm4M/yu0IRO8w2TFv+Y4H1vkF3VOMC4uMhZpMdoVBRDI+Vvlg3vG:rFlUcj9TF+Jk/4AcgHuv
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2