8b7d3aecf532e728f97a8b6af59b0686ffdc7ac765bce3adb04824d7c0e28895 | Triage

Sharing

General

Target

8b7d3aecf532e728f97a8b6af59b0686ffdc7ac765bce3adb04824d7c0e28895
Size

80KB
Sample

240620-amncnsycqf
MD5

962c88a3a8523204b52700b4f99dea49
SHA1

c5852d446bce07212158f2c96aacea208c9c7241
SHA256

8b7d3aecf532e728f97a8b6af59b0686ffdc7ac765bce3adb04824d7c0e28895
SHA512

2ec403070d7e5694dab129a31280ac570e2889ceb9d995c45908f60e6f88e74636b0747181f7d2bcd1cf94486b5e79033fa3dbcf0cacfb58341eeb18460bbec3
SSDEEP

1536:znE1T4Bjkz7BFVFl142LzaIZTJ+7LhkiB0:sT22FlzzaMU7ui

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  8b7d3aecf532e728f97a8b6af59b0686ffdc7ac765bce3adb04824d7c0e28895
- Size
  
  80KB
- MD5
  
  962c88a3a8523204b52700b4f99dea49
- SHA1
  
  c5852d446bce07212158f2c96aacea208c9c7241
- SHA256
  
  8b7d3aecf532e728f97a8b6af59b0686ffdc7ac765bce3adb04824d7c0e28895
- SHA512
  
  2ec403070d7e5694dab129a31280ac570e2889ceb9d995c45908f60e6f88e74636b0747181f7d2bcd1cf94486b5e79033fa3dbcf0cacfb58341eeb18460bbec3
- SSDEEP
  
  1536:znE1T4Bjkz7BFVFl142LzaIZTJ+7LhkiB0:sT22FlzzaMU7ui
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2