b8f897800d243e2d3aebeadff38202da94dd85c2ae8edfebef26c9e1affe66ca | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b8f897800d243e2d3aebeadff38202da94dd85c2ae8edfebef26c9e1affe66ca
Size

93KB
Sample

240704-db116s1akk
MD5

edf3279a6680d7227549b55adec76672
SHA1

fcb664482f42871205dd6f4ab263982d42ca92a7
SHA256

b8f897800d243e2d3aebeadff38202da94dd85c2ae8edfebef26c9e1affe66ca
SHA512

1a302ed6056a3e85256c3c8ddc3c4ff50a779f6f434b097155cc5cbc4a739abfba19b9d0dc4b4823c6cf46955351503e127903f2544b8367cc50ee7d43a8d951
SSDEEP

1536:lPvWaFYbJEAW02LaGUM9Fx2MZwhN5KEsaMiwihtIbbpkp:dWaFYtE88v7LEnhN5KEdMiwaIbbpkp

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  b8f897800d243e2d3aebeadff38202da94dd85c2ae8edfebef26c9e1affe66ca
- Size
  
  93KB
- MD5
  
  edf3279a6680d7227549b55adec76672
- SHA1
  
  fcb664482f42871205dd6f4ab263982d42ca92a7
- SHA256
  
  b8f897800d243e2d3aebeadff38202da94dd85c2ae8edfebef26c9e1affe66ca
- SHA512
  
  1a302ed6056a3e85256c3c8ddc3c4ff50a779f6f434b097155cc5cbc4a739abfba19b9d0dc4b4823c6cf46955351503e127903f2544b8367cc50ee7d43a8d951
- SSDEEP
  
  1536:lPvWaFYbJEAW02LaGUM9Fx2MZwhN5KEsaMiwihtIbbpkp:dWaFYtE88v7LEnhN5KEdMiwaIbbpkp
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2