7eb6bbc3873b091994b4bffe0af715171bcd133ea9e8200ffd65198b39ad7bc2 | Triage

Sharing

General

Target

8d7bb22c2609f010b3517296b6877060N.exe
Size

320KB
Sample

240817-s3h21atana
MD5

8d7bb22c2609f010b3517296b6877060
SHA1

785d29cf3c431fa7a9f8fc783eef6f626c7c0e02
SHA256

7eb6bbc3873b091994b4bffe0af715171bcd133ea9e8200ffd65198b39ad7bc2
SHA512

8787dbe4daf100949fa80ff467d2f1ad368d339e7a4d21cbf2de79825fe064074074d9c849abd03926d31febe396588f918ca71ae0ec0b53e9ff858b80b099f0
SSDEEP

6144:SFQi2TqDEueYr75lHzpaF2e6UK+42GTQMJSZO5f7M0rx7/hP66qve6UK+42GTQMH:82dueYr75lTefkY660fIaDZkY660f

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  8d7bb22c2609f010b3517296b6877060N.exe
- Size
  
  320KB
- MD5
  
  8d7bb22c2609f010b3517296b6877060
- SHA1
  
  785d29cf3c431fa7a9f8fc783eef6f626c7c0e02
- SHA256
  
  7eb6bbc3873b091994b4bffe0af715171bcd133ea9e8200ffd65198b39ad7bc2
- SHA512
  
  8787dbe4daf100949fa80ff467d2f1ad368d339e7a4d21cbf2de79825fe064074074d9c849abd03926d31febe396588f918ca71ae0ec0b53e9ff858b80b099f0
- SSDEEP
  
  6144:SFQi2TqDEueYr75lHzpaF2e6UK+42GTQMJSZO5f7M0rx7/hP66qve6UK+42GTQMH:82dueYr75lTefkY660fIaDZkY660f
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

System Network Configuration Discovery

Internet Connection Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence