8bd2cbf5675e7cb7bfd739474d4b1b68bbd3fcf3f94074f97acb138383da36ba | Triage

Sharing

General

Target

8bd2cbf5675e7cb7bfd739474d4b1b68bbd3fcf3f94074f97acb138383da36ba
Size

173KB
Sample

240818-277qlatckn
MD5

c6f47f62302ecedecb563e129c85f912
SHA1

b7aaaab2dcccc5cd39a3ce2f7d2b293967240062
SHA256

8bd2cbf5675e7cb7bfd739474d4b1b68bbd3fcf3f94074f97acb138383da36ba
SHA512

c0faa203bcd45873bb9d9cba9138eefdd0003aedeb98d202108f061748ff3824faa5ae68cdf7a233401df012e0cfb072689ff6d1e1589c0cfa7dfd0a93346310
SSDEEP

1536:JtffOhWz91XZahgT2yfxvKZxN9csCUvacknVwNtvSO06+ebMkxN:/+WahgtfAB+s/vacknVwNtvSO06+ebX

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  8bd2cbf5675e7cb7bfd739474d4b1b68bbd3fcf3f94074f97acb138383da36ba
- Size
  
  173KB
- MD5
  
  c6f47f62302ecedecb563e129c85f912
- SHA1
  
  b7aaaab2dcccc5cd39a3ce2f7d2b293967240062
- SHA256
  
  8bd2cbf5675e7cb7bfd739474d4b1b68bbd3fcf3f94074f97acb138383da36ba
- SHA512
  
  c0faa203bcd45873bb9d9cba9138eefdd0003aedeb98d202108f061748ff3824faa5ae68cdf7a233401df012e0cfb072689ff6d1e1589c0cfa7dfd0a93346310
- SSDEEP
  
  1536:JtffOhWz91XZahgT2yfxvKZxN9csCUvacknVwNtvSO06+ebMkxN:/+WahgtfAB+s/vacknVwNtvSO06+ebX
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence