8b79310de7f87988b6e685ed3905957adbc124c6bff05f4fb09902dfacc580e1 | Triage

Sharing

General

Target

8b79310de7f87988b6e685ed3905957adbc124c6bff05f4fb09902dfacc580e1
Size

64KB
Sample

240805-3wqtdawfmf
MD5

df9311fbe42992f76aaa0dbb0e72e5df
SHA1

1d1d58a5aa118e2686fbf4fb934249d762fabdae
SHA256

8b79310de7f87988b6e685ed3905957adbc124c6bff05f4fb09902dfacc580e1
SHA512

c36934e9d21e3cdc23114c3cdf884fe062e9e540800e255f532a42a48fed67ba6099c81b206fb8c7b970b60a561750a4bbf9051d013780aab0a5685d7189371e
SSDEEP

768:aakieCYWcb7gJCZ3HoDG2f/5oK3hacfpGbHXt/1H5tXdnhgoEqErtE1oHEzkAuA9:atrW8j3OxhhGbH3lV1iL+iALMH6

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  8b79310de7f87988b6e685ed3905957adbc124c6bff05f4fb09902dfacc580e1
- Size
  
  64KB
- MD5
  
  df9311fbe42992f76aaa0dbb0e72e5df
- SHA1
  
  1d1d58a5aa118e2686fbf4fb934249d762fabdae
- SHA256
  
  8b79310de7f87988b6e685ed3905957adbc124c6bff05f4fb09902dfacc580e1
- SHA512
  
  c36934e9d21e3cdc23114c3cdf884fe062e9e540800e255f532a42a48fed67ba6099c81b206fb8c7b970b60a561750a4bbf9051d013780aab0a5685d7189371e
- SSDEEP
  
  768:aakieCYWcb7gJCZ3HoDG2f/5oK3hacfpGbHXt/1H5tXdnhgoEqErtE1oHEzkAuA9:atrW8j3OxhhGbH3lV1iL+iALMH6
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence