2f82f5be0dbee4eeb1fc31cc31b60d00b477eb03e7570edbd2ca431d38ec4775 | Triage

Sharing

General

Target

2f82f5be0dbee4eeb1fc31cc31b60d00b477eb03e7570edbd2ca431d38ec4775
Size

64KB
Sample

240813-x8rnjssclb
MD5

a0efb3aa62f3545090f868b0c8938492
SHA1

2ffaf05f12583cd65362b50465678b72ee35948d
SHA256

2f82f5be0dbee4eeb1fc31cc31b60d00b477eb03e7570edbd2ca431d38ec4775
SHA512

ed901160a0b73c640bc6214f6f49fa1d546e81c0a9035433db39bf3daf679ad022a2e5e339c9c67a7d5780f778762c472e11ec8a4cde2ed19f6e50f40421739f
SSDEEP

768:ry2wBTiCTnvjQFje5sDEiNc+h71V/THBrkKPBhiDkqAq/1H5vXdnhgl72KNtL4wF:2NiCTnvjtKVc+h7vTpk6fiICPgNtn

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  2f82f5be0dbee4eeb1fc31cc31b60d00b477eb03e7570edbd2ca431d38ec4775
- Size
  
  64KB
- MD5
  
  a0efb3aa62f3545090f868b0c8938492
- SHA1
  
  2ffaf05f12583cd65362b50465678b72ee35948d
- SHA256
  
  2f82f5be0dbee4eeb1fc31cc31b60d00b477eb03e7570edbd2ca431d38ec4775
- SHA512
  
  ed901160a0b73c640bc6214f6f49fa1d546e81c0a9035433db39bf3daf679ad022a2e5e339c9c67a7d5780f778762c472e11ec8a4cde2ed19f6e50f40421739f
- SSDEEP
  
  768:ry2wBTiCTnvjQFje5sDEiNc+h71V/THBrkKPBhiDkqAq/1H5vXdnhgl72KNtL4wF:2NiCTnvjtKVc+h7vTpk6fiICPgNtn
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence