8014fbe420e2bd793a5d979d59ed2308b103b543eec37f05bb60885107fcd495 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8014fbe420e2bd793a5d979d59ed2308b103b543eec37f05bb60885107fcd495
Size

96KB
Sample

240813-1typ4asglm
MD5

cbdb3ec43ddb1fd2772df5124af3d830
SHA1

26ff08421ecb76505de92ebc1ee8b16a92bc816b
SHA256

8014fbe420e2bd793a5d979d59ed2308b103b543eec37f05bb60885107fcd495
SHA512

bfbd88b23a1c24fe4e1861c37e24f3fd7a65f6f20619552e93884ca4531a12fd5919e62a796ba1d6693eb3c8a7852e5691e858b53394bfd683e33722aefbcf00
SSDEEP

1536:xQAhDmLCyiYZi2o4NdqOAngwmJGRF6ZOJhTIpIgIFFfUN1Avhw6JCMd:yuDmLhi8i2ourZwmJGRF/TEhIFFfUrQz

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  8014fbe420e2bd793a5d979d59ed2308b103b543eec37f05bb60885107fcd495
- Size
  
  96KB
- MD5
  
  cbdb3ec43ddb1fd2772df5124af3d830
- SHA1
  
  26ff08421ecb76505de92ebc1ee8b16a92bc816b
- SHA256
  
  8014fbe420e2bd793a5d979d59ed2308b103b543eec37f05bb60885107fcd495
- SHA512
  
  bfbd88b23a1c24fe4e1861c37e24f3fd7a65f6f20619552e93884ca4531a12fd5919e62a796ba1d6693eb3c8a7852e5691e858b53394bfd683e33722aefbcf00
- SSDEEP
  
  1536:xQAhDmLCyiYZi2o4NdqOAngwmJGRF6ZOJhTIpIgIFFfUN1Avhw6JCMd:yuDmLhi8i2ourZwmJGRF/TEhIFFfUrQz
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence