b8d09f044c4da713b9a8aceaa2a962b388fbbeef5d1e15ed884927cf1bea7942 | Triage

Sharing

General

Target

b8d09f044c4da713b9a8aceaa2a962b388fbbeef5d1e15ed884927cf1bea7942
Size

53KB
Sample

241023-tlsesa1cmm
MD5

deb5b7199f27b99672ed461cf2592959
SHA1

4fa83717a9c9b57b4200871125c998c770092e22
SHA256

b8d09f044c4da713b9a8aceaa2a962b388fbbeef5d1e15ed884927cf1bea7942
SHA512

9cd6c2b97370c63809c348a8a049f7974c42375f832e5ee47b6a00ac09e5e0a67324dbacf7e1c7f0166eda8239c35876c85c460a1a2164b59de32e8e7c56c73e
SSDEEP

1536:DOLo8ugUVQDnU2ECGVp9cNEp3eKaHKEZmTh/t1ahn:Dqo80VQzNGVPcYapqVCn

Score

7^/10

defense_evasion discovery

Malware Config

Targets

- Target
  
  b8d09f044c4da713b9a8aceaa2a962b388fbbeef5d1e15ed884927cf1bea7942
- Size
  
  53KB
- MD5
  
  deb5b7199f27b99672ed461cf2592959
- SHA1
  
  4fa83717a9c9b57b4200871125c998c770092e22
- SHA256
  
  b8d09f044c4da713b9a8aceaa2a962b388fbbeef5d1e15ed884927cf1bea7942
- SHA512
  
  9cd6c2b97370c63809c348a8a049f7974c42375f832e5ee47b6a00ac09e5e0a67324dbacf7e1c7f0166eda8239c35876c85c460a1a2164b59de32e8e7c56c73e
- SSDEEP
  
  1536:DOLo8ugUVQDnU2ECGVp9cNEp3eKaHKEZmTh/t1ahn:Dqo80VQzNGVPcYapqVCn
Score

7^/10

defense_evasion discovery
- Executes dropped EXE
- Loads dropped DLL
- Indicator Removal: File Deletion
  Adversaries may delete files left behind by the actions of their intrusion activity.
  defense_evasion
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Indicator Removal

File Deletion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

defense_evasiondiscovery

behavioral2

defense_evasiondiscovery