fa86f81f619db1f891ee60752f38722eb44b54de40115d90e740889bc78e9493 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b8c06eb13919428af211cd387df7135c.zip
Size

2.3MB
Sample

240901-h7zkfavgqa
MD5

6cf7704e12169e538495d08e4136a3bc
SHA1

db1a07d80f4f0f17c2661e775bca702732dd8268
SHA256

fa86f81f619db1f891ee60752f38722eb44b54de40115d90e740889bc78e9493
SHA512

f4045c781463f405b27ec9e3ea14986d30f6ce7736e709cb2cb748b306f1a44c98be2c835ce503755fbe620dfceb45b23a8e3bb30c2e5f69690221378135e29f
SSDEEP

49152:1/AFtxXTDYGrbXEhtaqURykCQKQMYcSWETFrCiD0X/ilwkvZwxpIQocdQF1j:1oJjDjEhtaDAkQBYud7KlCGQocWD

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  dfd1902d7d22f02a3c8d3b2462781ef3ac007b12d35c98609a8d728700d694e7
- Size
  
  6.5MB
- MD5
  
  b8c06eb13919428af211cd387df7135c
- SHA1
  
  4ebb3a9280e3ea932e1664606f61ae45687c4559
- SHA256
  
  dfd1902d7d22f02a3c8d3b2462781ef3ac007b12d35c98609a8d728700d694e7
- SHA512
  
  b5c25423d84a4ddaf2bf0c4e30eac1f1d57c2279f5e5630ade3caea683749180f03666b3a29d402f276702e4eea2f9360b3c9df86674a4eeff943becde611217
- SSDEEP
  
  49152:yug6VZ08JY+VLl6TCmAaYQp3+fV2EeJug6VZ08JEd:yB6co882EmB6coEd
Score

7^/10

discovery persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2