2cbfaa15dc0fb11c6118f9a575105b68be95ccc3c476b5f12fa53780ae0ba99a | Triage

Sharing

General

Target

2cbfaa15dc0fb11c6118f9a575105b68be95ccc3c476b5f12fa53780ae0ba99a
Size

146KB
Sample

221124-qdvy6afa25
MD5

bccb78084079ffcc2a1c4dd3c18b3ccc
SHA1

1843135c4fe6ea9ca35d55864b6a71ac131840db
SHA256

2cbfaa15dc0fb11c6118f9a575105b68be95ccc3c476b5f12fa53780ae0ba99a
SHA512

9fb8c54d657b21f8065eee906476a2c4798df85c9d356ab7003a7d5e88e21990d564c95441d9dd6f5a9a1ca635c8bb245b9420557a931582d602de2dd7f69629
SSDEEP

3072:ncFkb1ZEVeXmM1T2O/9iU1m6djGxQpGxINS9rmHg32lYmlVGGyd:cKEoXmM1T2O/fn9vc80rmA3KYmlVGGyd

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  RG928200002_2014_november_00000329320.023042490280.0324980000038-0000006.exe
- Size
  
  176KB
- MD5
  
  26599a5d851894bac450a5529f779960
- SHA1
  
  86ad307147dcc84a84433c6728444f8f36e7a1e8
- SHA256
  
  5375bce7f7d28f834652064ba8c6f41864f3e1fef385aa093a14cf00165976de
- SHA512
  
  87a354060184dc12c9ee156e863cf62ebb95bb3557c75851c987cf3889f7445ccf2e1c9b93ceb6a1bc74ae5fcf03d60b3a8b93cf112f1586a5a033b1a4b6199b
- SSDEEP
  
  3072:K1tv0jMkCL5x8KxMFS/71d0u6O6DZxwWpPcrKxCtxQ/LgM8rPp0j0:KTCEXz/7D0u6RlxRPk8P8r+I
Score

7^/10

persistence
- Deletes itself
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2