e8a5091083b6fc4ffd1238b9095d7a80a36f4c5d78029ca03dcf938ea5e72580 | Triage

Sharing

General

Target

e8a5091083b6fc4ffd1238b9095d7a80a36f4c5d78029ca03dcf938ea5e72580
Size

55KB
Sample

240915-nfkj4a1djb
MD5

3a8b79b2ff78f77306c01fd9b684e70a
SHA1

54d07ed7e87bb382944d6fc28315436ee5459dcf
SHA256

e8a5091083b6fc4ffd1238b9095d7a80a36f4c5d78029ca03dcf938ea5e72580
SHA512

1ecc0783e6ab29201d7a44d04eccd3cac9aeb14b451094dd8a040192495770b74e054d8b7036e24738dc61e8b04db099e9b9b56a29a1f9a9f50825adc4b33659
SSDEEP

1536:Av4goXRs7cjtlsuKbdDDsOFf8YC4KUW62LL:+4gYe7U3suKZDDsOV8N4KUiL

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  e8a5091083b6fc4ffd1238b9095d7a80a36f4c5d78029ca03dcf938ea5e72580
- Size
  
  55KB
- MD5
  
  3a8b79b2ff78f77306c01fd9b684e70a
- SHA1
  
  54d07ed7e87bb382944d6fc28315436ee5459dcf
- SHA256
  
  e8a5091083b6fc4ffd1238b9095d7a80a36f4c5d78029ca03dcf938ea5e72580
- SHA512
  
  1ecc0783e6ab29201d7a44d04eccd3cac9aeb14b451094dd8a040192495770b74e054d8b7036e24738dc61e8b04db099e9b9b56a29a1f9a9f50825adc4b33659
- SSDEEP
  
  1536:Av4goXRs7cjtlsuKbdDDsOFf8YC4KUW62LL:+4gYe7U3suKZDDsOV8N4KUiL
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence