868b077dd055ea1ada6abf606620f03229105d8edea50d066cefe3e5f48250a8 | Triage

Sharing

General

Target

868b077dd055ea1ada6abf606620f03229105d8edea50d066cefe3e5f48250a8N
Size

89KB
Sample

240920-m9afjstcnm
MD5

830ae3e5113bbcb1b86c849381fe7750
SHA1

614a6de22fa5e1a939441ae1a88a8dc580f17fae
SHA256

868b077dd055ea1ada6abf606620f03229105d8edea50d066cefe3e5f48250a8
SHA512

31cfb6bcfcf7a7c9d50b523acd1ccde0d0737205759807e11345e9b8063bf8918e794de694d29beb3086b0e7f44a587d9e42659264e219fced4a55e5d9e7673e
SSDEEP

1536:Nkksv8fZ9tfPOcBeog4JCcsdSOafDbCANqufkt1rlc7pFAcOTlExkg8F:NtjfHtPOcXJCcsTafDNfkt1rlc7pFAcm

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  868b077dd055ea1ada6abf606620f03229105d8edea50d066cefe3e5f48250a8N
- Size
  
  89KB
- MD5
  
  830ae3e5113bbcb1b86c849381fe7750
- SHA1
  
  614a6de22fa5e1a939441ae1a88a8dc580f17fae
- SHA256
  
  868b077dd055ea1ada6abf606620f03229105d8edea50d066cefe3e5f48250a8
- SHA512
  
  31cfb6bcfcf7a7c9d50b523acd1ccde0d0737205759807e11345e9b8063bf8918e794de694d29beb3086b0e7f44a587d9e42659264e219fced4a55e5d9e7673e
- SSDEEP
  
  1536:Nkksv8fZ9tfPOcBeog4JCcsdSOafDbCANqufkt1rlc7pFAcOTlExkg8F:NtjfHtPOcXJCcsTafDNfkt1rlc7pFAcm
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence