8efde698fd255ec2608de2258061268f62cb57a598fd17e2660b680df42cef9d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8efde698fd255ec2608de2258061268f62cb57a598fd17e2660b680df42cef9d
Size

1.7MB
Sample

240620-atbmfsyfkh
MD5

54aa0de9a569fab2dc74802cbd14d344
SHA1

743fbddc23627e00b5276f978fd947939936c456
SHA256

8efde698fd255ec2608de2258061268f62cb57a598fd17e2660b680df42cef9d
SHA512

676b9adb5b86ce00d597288d123721866b46a71a88c8e5f7895b2a637410c595bd2c71c3feb0e5203b96c61c07426af40e1a83d9b985ded96bd83bb03a6a7405
SSDEEP

49152:dBsUjUSUjUvI8UjUSUjUEUjUSUjUvI8UjUSUjU:dBskJkWJkJkrkJkWJkJk

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  8efde698fd255ec2608de2258061268f62cb57a598fd17e2660b680df42cef9d
- Size
  
  1.7MB
- MD5
  
  54aa0de9a569fab2dc74802cbd14d344
- SHA1
  
  743fbddc23627e00b5276f978fd947939936c456
- SHA256
  
  8efde698fd255ec2608de2258061268f62cb57a598fd17e2660b680df42cef9d
- SHA512
  
  676b9adb5b86ce00d597288d123721866b46a71a88c8e5f7895b2a637410c595bd2c71c3feb0e5203b96c61c07426af40e1a83d9b985ded96bd83bb03a6a7405
- SSDEEP
  
  49152:dBsUjUSUjUvI8UjUSUjUEUjUSUjUvI8UjUSUjU:dBskJkWJkJkrkJkWJkJk
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2