1c7e2d6ae46ff6c294885cb7936c905f328b303d6f790b66d7c4489f284c480a | Triage

Resubmissions

14/09/2022, 01:51

220914-b9srcacggk 8

13/09/2022, 18:36

220913-w8xn5acbek 8

Sharing

General

Target

1c7e2d6ae46ff6c294885cb7936c905f328b303d6f790b66d7c4489f284c480a.exe
Size

1.9MB
Sample

220914-b9srcacggk
MD5

86994406c501c31171ff59ba4214f6e5
SHA1

17c8034eeb3e0a6673b3a5e27d7ac438329fde89
SHA256

1c7e2d6ae46ff6c294885cb7936c905f328b303d6f790b66d7c4489f284c480a
SHA512

1bf6a4bfe0e1d06912b51d558451b1174e52d478c14b6bfc8f6888a933203e31835e1eb34e88b22b145ffcf6ce058fe907fb7d7b27726272d73b9e4010230b03
SSDEEP

49152:2qeNVAUe+hw2OCnyiwiiZQCu9f0BTHgXhfSUX2:nEjhPyNgJ0ZgXxxX2

Score

8^/10

discovery persistence

Malware Config

Targets

- Target
  
  1c7e2d6ae46ff6c294885cb7936c905f328b303d6f790b66d7c4489f284c480a.exe
- Size
  
  1.9MB
- MD5
  
  86994406c501c31171ff59ba4214f6e5
- SHA1
  
  17c8034eeb3e0a6673b3a5e27d7ac438329fde89
- SHA256
  
  1c7e2d6ae46ff6c294885cb7936c905f328b303d6f790b66d7c4489f284c480a
- SHA512
  
  1bf6a4bfe0e1d06912b51d558451b1174e52d478c14b6bfc8f6888a933203e31835e1eb34e88b22b145ffcf6ce058fe907fb7d7b27726272d73b9e4010230b03
- SSDEEP
  
  49152:2qeNVAUe+hw2OCnyiwiiZQCu9f0BTHgXhfSUX2:nEjhPyNgJ0ZgXxxX2
Score

8^/10

discovery persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence