8922f3c343b472bf4c106c3c1094efdea9cd3da6c25cae1350ab52b6efa297a7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cbb2e88392ff0a1a3a2e1c730f635e10N
Size

60KB
Sample

240825-1fn9haxhmp
MD5

cbb2e88392ff0a1a3a2e1c730f635e10
SHA1

1064d086143ef8db130fb66deb170cadbb30c621
SHA256

8922f3c343b472bf4c106c3c1094efdea9cd3da6c25cae1350ab52b6efa297a7
SHA512

b5f2c0711ba5e8f194e3645ec08760c2d73c0f768ef5cb2085ada611055a89540c432d2195eb2593bc96faff9db52ea779be588ce8e3643a62943903ad9a3453
SSDEEP

1536:DLPGZs250NLJ4hWQqC/1pAJnTrYPOKLB86l1rs:+Zs269J4hWe/kT9UB86l1rs

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  cbb2e88392ff0a1a3a2e1c730f635e10N
- Size
  
  60KB
- MD5
  
  cbb2e88392ff0a1a3a2e1c730f635e10
- SHA1
  
  1064d086143ef8db130fb66deb170cadbb30c621
- SHA256
  
  8922f3c343b472bf4c106c3c1094efdea9cd3da6c25cae1350ab52b6efa297a7
- SHA512
  
  b5f2c0711ba5e8f194e3645ec08760c2d73c0f768ef5cb2085ada611055a89540c432d2195eb2593bc96faff9db52ea779be588ce8e3643a62943903ad9a3453
- SSDEEP
  
  1536:DLPGZs250NLJ4hWQqC/1pAJnTrYPOKLB86l1rs:+Zs269J4hWe/kT9UB86l1rs
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence