358e25062a6de3fa0bad2d061df659cdb9c4fefeb20d57344615b6de6f72a453 | Triage

Sharing

General

Target

358e25062a6de3fa0bad2d061df659cdb9c4fefeb20d57344615b6de6f72a453
Size

209KB
Sample

220521-mjnv9abgh2
MD5

1c467024942ac80371c5fbb760d0b000
SHA1

30d4a28b318ad8d7cd5ebdea52bfb359e681ffc7
SHA256

358e25062a6de3fa0bad2d061df659cdb9c4fefeb20d57344615b6de6f72a453
SHA512

391c7078b873e2e610aaca1ebd683c3ca166f615cb528bb16f579fbb8a5ac2f45d1ef3d2074d02c766d44b56e9d554c9ccd6180482e89ce266fe5ca7cc5cd7af

Score

8^/10

discovery persistence

Malware Config

Targets

- Target
  
  358e25062a6de3fa0bad2d061df659cdb9c4fefeb20d57344615b6de6f72a453
- Size
  
  209KB
- MD5
  
  1c467024942ac80371c5fbb760d0b000
- SHA1
  
  30d4a28b318ad8d7cd5ebdea52bfb359e681ffc7
- SHA256
  
  358e25062a6de3fa0bad2d061df659cdb9c4fefeb20d57344615b6de6f72a453
- SHA512
  
  391c7078b873e2e610aaca1ebd683c3ca166f615cb528bb16f579fbb8a5ac2f45d1ef3d2074d02c766d44b56e9d554c9ccd6180482e89ce266fe5ca7cc5cd7af
Score

8^/10

discovery persistence
- Downloads MZ/PE file
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Install Root Certificate

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2

discoverypersistence