1510024a901f5feef4392db2a72abc95f5e024ee1f3ba1650ee4a21c0f377cf4 | Triage

Sharing

General

Target

1510024a901f5feef4392db2a72abc95f5e024ee1f3ba1650ee4a21c0f377cf4
Size

208KB
Sample

221124-j2zhxsde9v
MD5

32abe9ab1411b5b44ff5788c52a3a1a2
SHA1

be147b7f9765cdb6bd1c70bfc30424eb7a3329f4
SHA256

1510024a901f5feef4392db2a72abc95f5e024ee1f3ba1650ee4a21c0f377cf4
SHA512

daa7344e4b4ad3460e974ac46418a859626e043c0228fc1e90a82a17b2eda1bfdecc370e776361facaa219961158a3941c66c0d115d924c46b364e0946fcf948
SSDEEP

6144:Xfm+fU7jlbAHNl9ySx7IPKpq9wIgsMHAK:Pm+fUlAlYup3Dp

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  2014_11informationen_finanzgruppe_000070002.000038622.771714407-0044.exe
- Size
  
  277KB
- MD5
  
  6f4d475eb0cb95a0bf8ab9825403253d
- SHA1
  
  b2f4bf05e102823c97b2a6a4b00c4183073d93a4
- SHA256
  
  cae0331cddf01777e3b1c275240b988c675527a4e9f72f91ffe4c0e8d68f73e4
- SHA512
  
  384ccff8f308e901bde57c65f76aa0f501019cb709b47c041fa1c234d81f77da08980b7c757b22a83ebafe720a3aa7d676528a988d2a3b35cb80f5a91f51382e
- SSDEEP
  
  6144:diaYUpwXV9RIKWn/TUVs8oL48N8lqFzc+tRJShtS:jzXrN8UbtPShI
Score

7^/10

persistence
- Deletes itself
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2