8ec1ade2b0f3343ee8d2670244f2f1a77377c96a59a4ed6edc3ba83ba78c248d | Triage

Sharing

General

Target

8ec1ade2b0f3343ee8d2670244f2f1a77377c96a59a4ed6edc3ba83ba78c248dN
Size

96KB
Sample

240920-ja2h7svdrh
MD5

9dbdb2eb884d55c546458d89058872b0
SHA1

285830947fe82d885eb569a714ef632963334f25
SHA256

8ec1ade2b0f3343ee8d2670244f2f1a77377c96a59a4ed6edc3ba83ba78c248d
SHA512

c1b866e67a7ae191cca3e280e2826337f686281b7c917f7682f99d684fe29ab7033004aea794702598370cafd30d60ef1d1028623bbc5964341fb7b68346547d
SSDEEP

1536:tzofGpvXZDl+JAmz+vfq2pY20iQD2SuvYnASRK8H8OM6bOLXi8PmCofGy:K0xxtvS2pY20i7YvK8cDrLXfzoey

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  8ec1ade2b0f3343ee8d2670244f2f1a77377c96a59a4ed6edc3ba83ba78c248dN
- Size
  
  96KB
- MD5
  
  9dbdb2eb884d55c546458d89058872b0
- SHA1
  
  285830947fe82d885eb569a714ef632963334f25
- SHA256
  
  8ec1ade2b0f3343ee8d2670244f2f1a77377c96a59a4ed6edc3ba83ba78c248d
- SHA512
  
  c1b866e67a7ae191cca3e280e2826337f686281b7c917f7682f99d684fe29ab7033004aea794702598370cafd30d60ef1d1028623bbc5964341fb7b68346547d
- SSDEEP
  
  1536:tzofGpvXZDl+JAmz+vfq2pY20iQD2SuvYnASRK8H8OM6bOLXi8PmCofGy:K0xxtvS2pY20i7YvK8cDrLXfzoey
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence