8df87e709fc09cea3663a48f6378f462a806531b350340906b0eb53fb1fdb10c | Triage

Sharing

General

Target

8df87e709fc09cea3663a48f6378f462a806531b350340906b0eb53fb1fdb10c
Size

77KB
Sample

240913-3vqrzswbkp
MD5

35e8fb10cbcee5ca4428743245fb372a
SHA1

679078857c962270df866b952f0c8a690113fe84
SHA256

8df87e709fc09cea3663a48f6378f462a806531b350340906b0eb53fb1fdb10c
SHA512

45566d2d589614e9cd634db4ed710dc5c165e772a2aec67b5845b3fc69c558c438e5890817589ea2a0c7e1ffc199503c25e64001ebe05a4b8b18b6c6df12b02c
SSDEEP

768:jtph83y4Rnjyx1twPB0S4Kv7ANjgNMChRjfBCHFzUJkVd2p/1H5pVunXdnh2F4gG:/p4RnjyyJ08iMJf+F2Ltgwfi+TjRC/

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  8df87e709fc09cea3663a48f6378f462a806531b350340906b0eb53fb1fdb10c
- Size
  
  77KB
- MD5
  
  35e8fb10cbcee5ca4428743245fb372a
- SHA1
  
  679078857c962270df866b952f0c8a690113fe84
- SHA256
  
  8df87e709fc09cea3663a48f6378f462a806531b350340906b0eb53fb1fdb10c
- SHA512
  
  45566d2d589614e9cd634db4ed710dc5c165e772a2aec67b5845b3fc69c558c438e5890817589ea2a0c7e1ffc199503c25e64001ebe05a4b8b18b6c6df12b02c
- SSDEEP
  
  768:jtph83y4Rnjyx1twPB0S4Kv7ANjgNMChRjfBCHFzUJkVd2p/1H5pVunXdnh2F4gG:/p4RnjyyJ08iMJf+F2Ltgwfi+TjRC/
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence