8d1f3cb69d8ace69bf4f6353614ff07b28635b96b601eea6797893a983b4d68c | Triage

Sharing

General

Target

8d1f3cb69d8ace69bf4f6353614ff07b28635b96b601eea6797893a983b4d68c
Size

93KB
Sample

240807-anvhdavfmj
MD5

599f2e748d122f4edd0131603aef0143
SHA1

6618cd01c93868054ef2cd292db1f3957ba92b05
SHA256

8d1f3cb69d8ace69bf4f6353614ff07b28635b96b601eea6797893a983b4d68c
SHA512

64d4e2232404ce8774991e9a273efea38b607c4d208e2d358de622efb164531ea0a69848f4ce76781fb630702ab7a2b5201803bdf8395f0ac77b63c3245bdac4
SSDEEP

1536:uj/3YqWwRuiVKVYd4nVFSGy0cQ0z6uGPjGZPsRQ+RkRLJzeLD9N0iQGRNQR8RyVd:2JWmZVKSd4VmwuSFe+SJdEN0s4WE+3K

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  8d1f3cb69d8ace69bf4f6353614ff07b28635b96b601eea6797893a983b4d68c
- Size
  
  93KB
- MD5
  
  599f2e748d122f4edd0131603aef0143
- SHA1
  
  6618cd01c93868054ef2cd292db1f3957ba92b05
- SHA256
  
  8d1f3cb69d8ace69bf4f6353614ff07b28635b96b601eea6797893a983b4d68c
- SHA512
  
  64d4e2232404ce8774991e9a273efea38b607c4d208e2d358de622efb164531ea0a69848f4ce76781fb630702ab7a2b5201803bdf8395f0ac77b63c3245bdac4
- SSDEEP
  
  1536:uj/3YqWwRuiVKVYd4nVFSGy0cQ0z6uGPjGZPsRQ+RkRLJzeLD9N0iQGRNQR8RyVd:2JWmZVKSd4VmwuSFe+SJdEN0s4WE+3K
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence