b08fbd3b004562eab241e4bbbb503996f8e279426a5287c5e24e73e1bcc9aee4 | Triage

Sharing

General

Target

b08fbd3b004562eab241e4bbbb503996f8e279426a5287c5e24e73e1bcc9aee4N
Size

89KB
Sample

241001-d4nxbaycmj
MD5

704d663b22c614e5a5a3a80661672120
SHA1

9a565f8cb53802cc486b0a7728140725356ba248
SHA256

b08fbd3b004562eab241e4bbbb503996f8e279426a5287c5e24e73e1bcc9aee4
SHA512

9bb7a7c4a2cd3f311f7ba0f2fa372bbedad37eb7534b768b89b2eeaa3f0c1d65fc0ec2c2bf2497c08116d8877f280701ae08ca5b8bd3620f1900405dde27f4e2
SSDEEP

1536:ZpXv+J834QsNkPIcDgTN+Nnr7pxKjNMzftv0vcclExkg8Fk:H6tTNKznrtjxv0vcclakgwk

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  b08fbd3b004562eab241e4bbbb503996f8e279426a5287c5e24e73e1bcc9aee4N
- Size
  
  89KB
- MD5
  
  704d663b22c614e5a5a3a80661672120
- SHA1
  
  9a565f8cb53802cc486b0a7728140725356ba248
- SHA256
  
  b08fbd3b004562eab241e4bbbb503996f8e279426a5287c5e24e73e1bcc9aee4
- SHA512
  
  9bb7a7c4a2cd3f311f7ba0f2fa372bbedad37eb7534b768b89b2eeaa3f0c1d65fc0ec2c2bf2497c08116d8877f280701ae08ca5b8bd3620f1900405dde27f4e2
- SSDEEP
  
  1536:ZpXv+J834QsNkPIcDgTN+Nnr7pxKjNMzftv0vcclExkg8Fk:H6tTNKznrtjxv0vcclakgwk
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence