8bbf2375154b2e914317db2952244b7a93fc122c540d3e87e5bb06ae1f2420bf | Triage

Sharing

General

Target

8bbf2375154b2e914317db2952244b7a93fc122c540d3e87e5bb06ae1f2420bf
Size

96KB
Sample

240724-acjazawenn
MD5

3b3d990655032efff17a68faa85486ce
SHA1

8e24230152a2cfc131a0e17ea5df656246f5bfa8
SHA256

8bbf2375154b2e914317db2952244b7a93fc122c540d3e87e5bb06ae1f2420bf
SHA512

6b2f5843a79a0a36a66832e520fa1c829e4a6708c4e0662a35435333d0bdab140c4421dbde4c51c2700522320413679d2c762c0949d4566e4ab049f7f86c76f1
SSDEEP

1536:KvFPswPJr6puffeMHDH4xuYBYqB2XWq/FyZSqz2GC2tV74S7V+5pUMv84WMRw8DO:KvFxr6pueADH4bYXmMy3Wih4Sp+7H7wd

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  8bbf2375154b2e914317db2952244b7a93fc122c540d3e87e5bb06ae1f2420bf
- Size
  
  96KB
- MD5
  
  3b3d990655032efff17a68faa85486ce
- SHA1
  
  8e24230152a2cfc131a0e17ea5df656246f5bfa8
- SHA256
  
  8bbf2375154b2e914317db2952244b7a93fc122c540d3e87e5bb06ae1f2420bf
- SHA512
  
  6b2f5843a79a0a36a66832e520fa1c829e4a6708c4e0662a35435333d0bdab140c4421dbde4c51c2700522320413679d2c762c0949d4566e4ab049f7f86c76f1
- SSDEEP
  
  1536:KvFPswPJr6puffeMHDH4xuYBYqB2XWq/FyZSqz2GC2tV74S7V+5pUMv84WMRw8DO:KvFxr6pueADH4bYXmMy3Wih4Sp+7H7wd
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence