8489cc77a432ed5b6c264197080cfa84b0f1dc54feedc8afa34e0f8a8018cdae | Triage

Sharing

General

Target

8489cc77a432ed5b6c264197080cfa84b0f1dc54feedc8afa34e0f8a8018cdae
Size

844KB
Sample

240908-3z38wavajb
MD5

f0bbd60bb1aa0f13f80380752e0e8e3e
SHA1

f8081022c738ea24c5fc72a1e4891b6928ffd772
SHA256

8489cc77a432ed5b6c264197080cfa84b0f1dc54feedc8afa34e0f8a8018cdae
SHA512

5170272c0b8e4221652d383e6350bd4eee374a436749e7bb650fca3e2689fe2d6619f7c70507e3ccff2dea74e9bc8a7be40ac4be87a4ec7ac9a05119d1c40318
SSDEEP

24576:BcH5W3TnbQihMpQnqrdX72LbY6x46uR/qYglMi:BcH5W3TbQihw+cdX2x46uhqllMi

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  8489cc77a432ed5b6c264197080cfa84b0f1dc54feedc8afa34e0f8a8018cdae
- Size
  
  844KB
- MD5
  
  f0bbd60bb1aa0f13f80380752e0e8e3e
- SHA1
  
  f8081022c738ea24c5fc72a1e4891b6928ffd772
- SHA256
  
  8489cc77a432ed5b6c264197080cfa84b0f1dc54feedc8afa34e0f8a8018cdae
- SHA512
  
  5170272c0b8e4221652d383e6350bd4eee374a436749e7bb650fca3e2689fe2d6619f7c70507e3ccff2dea74e9bc8a7be40ac4be87a4ec7ac9a05119d1c40318
- SSDEEP
  
  24576:BcH5W3TnbQihMpQnqrdX72LbY6x46uR/qYglMi:BcH5W3TbQihw+cdX2x46uhqllMi
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence