8966611914e4ada512b28528616ea242d44c20e3eda72e0a4d09e1458f60d352 | Triage

Sharing

General

Target

8966611914e4ada512b28528616ea242d44c20e3eda72e0a4d09e1458f60d352
Size

464KB
Sample

240823-21pansscmf
MD5

a2c3b643b091bf2f7b0c9cc8e0f02f55
SHA1

be1bf750e12e9a998f361c954e50941a631d1d4e
SHA256

8966611914e4ada512b28528616ea242d44c20e3eda72e0a4d09e1458f60d352
SHA512

92bb032ceb0fc4b5ca80021d83736ae4180f2bc23cb1249388c78342a28938e8b1b74e1075b4bd0a75a0f71bc3beabaae74635d58c0d9d4c0c2538bfb9ab7226
SSDEEP

12288:xGlc87eqqV5e+wBV6O+Nf1EJvLIjh5XakIaPW:xGSqqHeVBxxDuFIau

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  8966611914e4ada512b28528616ea242d44c20e3eda72e0a4d09e1458f60d352
- Size
  
  464KB
- MD5
  
  a2c3b643b091bf2f7b0c9cc8e0f02f55
- SHA1
  
  be1bf750e12e9a998f361c954e50941a631d1d4e
- SHA256
  
  8966611914e4ada512b28528616ea242d44c20e3eda72e0a4d09e1458f60d352
- SHA512
  
  92bb032ceb0fc4b5ca80021d83736ae4180f2bc23cb1249388c78342a28938e8b1b74e1075b4bd0a75a0f71bc3beabaae74635d58c0d9d4c0c2538bfb9ab7226
- SSDEEP
  
  12288:xGlc87eqqV5e+wBV6O+Nf1EJvLIjh5XakIaPW:xGSqqHeVBxxDuFIau
Score

7^/10

discovery persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence