8f2197ea2b9a543b0df268d63ac462b43980fefd8ca8c36d06cccc053ad43aea | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8f2197ea2b9a543b0df268d63ac462b43980fefd8ca8c36d06cccc053ad43aea
Size

95KB
Sample

240710-bxr92szfmd
MD5

a888ce92b97c71e5c23471b90f3a5504
SHA1

c4518c508743f10611fc07b7b888748dee6ab327
SHA256

8f2197ea2b9a543b0df268d63ac462b43980fefd8ca8c36d06cccc053ad43aea
SHA512

5e4f7f9424ab4a7307b003a72532ad75f9e8f38d63451cac5e59c572e6eccd0e5d2d9f90860201b30ec3b7a0bd510e9d9790b3d4e14baeea7664b64b50c99a24
SSDEEP

1536:K+SaNkb7FEgjMKORMPCATUd1b+MiScCCMC0SW3P+L4iH6ez+/gikhqtVOM6bOLXz:K+SYkb7DFORwTmMMiTqCjWf+L9H7QVLv

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  8f2197ea2b9a543b0df268d63ac462b43980fefd8ca8c36d06cccc053ad43aea
- Size
  
  95KB
- MD5
  
  a888ce92b97c71e5c23471b90f3a5504
- SHA1
  
  c4518c508743f10611fc07b7b888748dee6ab327
- SHA256
  
  8f2197ea2b9a543b0df268d63ac462b43980fefd8ca8c36d06cccc053ad43aea
- SHA512
  
  5e4f7f9424ab4a7307b003a72532ad75f9e8f38d63451cac5e59c572e6eccd0e5d2d9f90860201b30ec3b7a0bd510e9d9790b3d4e14baeea7664b64b50c99a24
- SSDEEP
  
  1536:K+SaNkb7FEgjMKORMPCATUd1b+MiScCCMC0SW3P+L4iH6ez+/gikhqtVOM6bOLXz:K+SYkb7DFORwTmMMiTqCjWf+L9H7QVLv
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2