8f2bb879010f5ea685095e6e2ca50b99ca830d8cb83e919a169a17ac9b2b89c6 | Triage

Sharing

General

Target

8f2bb879010f5ea685095e6e2ca50b99ca830d8cb83e919a169a17ac9b2b89c6
Size

448KB
Sample

240705-ajhm1sxdrn
MD5

db20356a53bac88240ee11d789dd7c39
SHA1

5605dedfdb25d2fbfcf22ec85e5524b461e83497
SHA256

8f2bb879010f5ea685095e6e2ca50b99ca830d8cb83e919a169a17ac9b2b89c6
SHA512

c945360091eb45b1124b1d1ea168491189534e08d5158ad273fa3b8a415598532b0d5c565036158d716527a8220d38110eb4721bcd34d159fe4744fad7590c16
SSDEEP

6144:wubJdnfBGPQ///NR5fLYG3eujPQ///NR5fqZo4tjS6Y:wubJP/NcZ7/NC64tm6Y

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  8f2bb879010f5ea685095e6e2ca50b99ca830d8cb83e919a169a17ac9b2b89c6
- Size
  
  448KB
- MD5
  
  db20356a53bac88240ee11d789dd7c39
- SHA1
  
  5605dedfdb25d2fbfcf22ec85e5524b461e83497
- SHA256
  
  8f2bb879010f5ea685095e6e2ca50b99ca830d8cb83e919a169a17ac9b2b89c6
- SHA512
  
  c945360091eb45b1124b1d1ea168491189534e08d5158ad273fa3b8a415598532b0d5c565036158d716527a8220d38110eb4721bcd34d159fe4744fad7590c16
- SSDEEP
  
  6144:wubJdnfBGPQ///NR5fLYG3eujPQ///NR5fqZo4tjS6Y:wubJP/NcZ7/NC64tm6Y
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2