d8f78539ee1b0090b02c058e85722a8c69106f0f97fd6ffa0fdfb51e8d36f444 | Triage

Sharing

General

Target

d8f78539ee1b0090b02c058e85722a8c69106f0f97fd6ffa0fdfb51e8d36f444
Size

113KB
Sample

240524-el27nacd95
MD5

b6d08adf15a3349d12104370d102d3b7
SHA1

4fd5ed25d788d765b13e777e03a8d7fd832f2079
SHA256

d8f78539ee1b0090b02c058e85722a8c69106f0f97fd6ffa0fdfb51e8d36f444
SHA512

2a7458f3a60d524d0039d245f5e24eea92e5ced32ba469545dcca4a610204d7919f80220ecbe2fe7c8c6eb66d515466e0eba5292315d9221068f8bda189321c9
SSDEEP

3072:X5piHWQxvEwGOuGkZFfFSebHWrH8wTW0:X5Cswb7otSeWrP

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  d8f78539ee1b0090b02c058e85722a8c69106f0f97fd6ffa0fdfb51e8d36f444
- Size
  
  113KB
- MD5
  
  b6d08adf15a3349d12104370d102d3b7
- SHA1
  
  4fd5ed25d788d765b13e777e03a8d7fd832f2079
- SHA256
  
  d8f78539ee1b0090b02c058e85722a8c69106f0f97fd6ffa0fdfb51e8d36f444
- SHA512
  
  2a7458f3a60d524d0039d245f5e24eea92e5ced32ba469545dcca4a610204d7919f80220ecbe2fe7c8c6eb66d515466e0eba5292315d9221068f8bda189321c9
- SSDEEP
  
  3072:X5piHWQxvEwGOuGkZFfFSebHWrH8wTW0:X5Cswb7otSeWrP
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2