e8bd6131a734b260485446c6587b64c5889d6fde23233a68119dc0f864b4887c | Triage

Sharing

General

Target

e8bd6131a734b260485446c6587b64c5889d6fde23233a68119dc0f864b4887cN
Size

56KB
Sample

240920-c49y4svflm
MD5

93d9a9e69668b4e9011ce1d9ed7c2f40
SHA1

680a319b2f33e96eb62500fcc153b623c379e289
SHA256

e8bd6131a734b260485446c6587b64c5889d6fde23233a68119dc0f864b4887c
SHA512

308cc4093ed21abc96d709b8d88281190b8275dfa3b6b694d4bc86af3d8c0e1a0f95ef263d6ba6732e8157e530f23c6bea34e13ffa694fa8080faef185b300b3
SSDEEP

768:+S+uw5eEchXfWG4ktID++GyFaA0X+/hTAk8s7RAyAWQSyT4Jii3LLQoe/1H5JftP:+SXx+5qyFaAr6k8oR06lbcpvfj

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  e8bd6131a734b260485446c6587b64c5889d6fde23233a68119dc0f864b4887cN
- Size
  
  56KB
- MD5
  
  93d9a9e69668b4e9011ce1d9ed7c2f40
- SHA1
  
  680a319b2f33e96eb62500fcc153b623c379e289
- SHA256
  
  e8bd6131a734b260485446c6587b64c5889d6fde23233a68119dc0f864b4887c
- SHA512
  
  308cc4093ed21abc96d709b8d88281190b8275dfa3b6b694d4bc86af3d8c0e1a0f95ef263d6ba6732e8157e530f23c6bea34e13ffa694fa8080faef185b300b3
- SSDEEP
  
  768:+S+uw5eEchXfWG4ktID++GyFaA0X+/hTAk8s7RAyAWQSyT4Jii3LLQoe/1H5JftP:+SXx+5qyFaAr6k8oR06lbcpvfj
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence