8697ec3d9934da950190d81a20420be11e39534d0ebd0bf2a9c6773f6ce1f5d5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8adb447d014008c70966e1bc59d37060N.exe
Size

285KB
Sample

240805-pc184szakc
MD5

8adb447d014008c70966e1bc59d37060
SHA1

9ffee6b64beab2ab41f04ce3e775271b061c545e
SHA256

8697ec3d9934da950190d81a20420be11e39534d0ebd0bf2a9c6773f6ce1f5d5
SHA512

fb8213084b1094294d70d291ecd21f44d30e868dd66e25e274072ed4e80696a002e469c63458ff36929a297b77498a2d8a6872513659374d546fcaafa62d3943
SSDEEP

3072:BUDjmR2xkxcqttTnsaDKWepKVcbMloVRr3uMg0kAqSxYiJ2QM4GKch:aS2xkxfrsaDupKQIoi7tWa

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  8adb447d014008c70966e1bc59d37060N.exe
- Size
  
  285KB
- MD5
  
  8adb447d014008c70966e1bc59d37060
- SHA1
  
  9ffee6b64beab2ab41f04ce3e775271b061c545e
- SHA256
  
  8697ec3d9934da950190d81a20420be11e39534d0ebd0bf2a9c6773f6ce1f5d5
- SHA512
  
  fb8213084b1094294d70d291ecd21f44d30e868dd66e25e274072ed4e80696a002e469c63458ff36929a297b77498a2d8a6872513659374d546fcaafa62d3943
- SSDEEP
  
  3072:BUDjmR2xkxcqttTnsaDKWepKVcbMloVRr3uMg0kAqSxYiJ2QM4GKch:aS2xkxfrsaDupKQIoi7tWa
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence