ea69fd6849c5b645c96fa4b868b5c417e1f07273dd0f7cd707745bfbdfb1a8bb | Triage

Sharing

General

Target

ea69fd6849c5b645c96fa4b868b5c417e1f07273dd0f7cd707745bfbdfb1a8bb
Size

146KB
Sample

221124-f34bqaef9s
MD5

c7ea862abb69e1871a6d0a59cab4601a
SHA1

a48e49f6b499c0f8c384917dcbde5392924d1dd6
SHA256

ea69fd6849c5b645c96fa4b868b5c417e1f07273dd0f7cd707745bfbdfb1a8bb
SHA512

b7f76a2b2ce0df1c15594175aff2b673d9f5fc85fade0b981981d96e3c9cb17e01c0693eada22a9d2a318522606b5cdc575ac97b2a9a101fcc61c8aed049a471
SSDEEP

3072:kuL4suyftDcmLDLYYJQEIigwkZM7QWtcJWjRzvNNcIdlwC09BJQl:kuL48ftDcmHz7PgDZJkjRzVOqnUMl

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  RG928200002_2014_november_00000329320.023042490280.0324980000038-0000006.exe
- Size
  
  176KB
- MD5
  
  4a1d13a05a93cfaa8dd2627c696d2f0b
- SHA1
  
  173c81da2aab91f225f8eb5e8fcc87119be4eff0
- SHA256
  
  03f825726fdf3341bcfa36fcfd6dcd08e9d7ec3df982f7af9a290aa6f3c5647c
- SHA512
  
  29269b35d3b041ccf08d2351e4f3fa906ed396e5a880b357398f2f72ba7a20ff870531b2d7febaa1e4173412074d6bc7bee5723ad683011ee4a247fb683e7301
- SSDEEP
  
  3072:q6AMa+ceqZl+r4okWL23kjsZUQoRyV01WZIrLwwWyKdMd9zfp0T0:VfzsbWa3hZUHRHwwWy8UO4
Score

7^/10

persistence
- Deletes itself
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2