8f8b920745454c2eac30e81cbed27c470d2860a8efd5d107c19934fd0c60c507 | Triage

Sharing

General

Target

8f8b920745454c2eac30e81cbed27c470d2860a8efd5d107c19934fd0c60c507
Size

509KB
Sample

240811-3t17bszbke
MD5

66819ef2e63399ac2b6206ef3f70af95
SHA1

109cb7dfb325f9b067b78c7299abcc1bc1a41fa2
SHA256

8f8b920745454c2eac30e81cbed27c470d2860a8efd5d107c19934fd0c60c507
SHA512

3e8c6169d078f06767c0c4ad3de2720801435cfd9e990abf9dba080c1bd847fceab61d9a486356a801bbd715e103f3ba11bd2745ec4d79444e0f8ec2cbb8f484
SSDEEP

768:5BBdFYDgao5/AUrLEEzayTpBJfxBDlxcFNXK8D1Foj/:5pcC/eAayJ3Rx0g

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  8f8b920745454c2eac30e81cbed27c470d2860a8efd5d107c19934fd0c60c507
- Size
  
  509KB
- MD5
  
  66819ef2e63399ac2b6206ef3f70af95
- SHA1
  
  109cb7dfb325f9b067b78c7299abcc1bc1a41fa2
- SHA256
  
  8f8b920745454c2eac30e81cbed27c470d2860a8efd5d107c19934fd0c60c507
- SHA512
  
  3e8c6169d078f06767c0c4ad3de2720801435cfd9e990abf9dba080c1bd847fceab61d9a486356a801bbd715e103f3ba11bd2745ec4d79444e0f8ec2cbb8f484
- SSDEEP
  
  768:5BBdFYDgao5/AUrLEEzayTpBJfxBDlxcFNXK8D1Foj/:5pcC/eAayJ3Rx0g
Score

7^/10

discovery persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence