36087a753f7ea44e89cd14e75709a1bfdacb708dc224820678cd9fb5f9c9790a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

36087a753f7ea44e89cd14e75709a1bfdacb708dc224820678cd9fb5f9c9790a
Size

7.7MB
Sample

230521-d53f4aga73
MD5

c86a4ada44b10a4378d79ea2c4e70df7
SHA1

b6553db7022db6ea68e9998c234fc8795e311ff2
SHA256

36087a753f7ea44e89cd14e75709a1bfdacb708dc224820678cd9fb5f9c9790a
SHA512

364335ee0669793bb33e508f96b91d554868d4f5124d822bb8408ff706c9a028e332b3d378b4c47f02c45805d2ec68d57ab8f962946c5c31519209e01335310c
SSDEEP

98304:tr0qeUA5B9jDLyxt2l5w2SKXIlBE8qgk1uGYEmajpGyrWR17tsPdCO1:t0dB9zokw2KBqQG5pGYWj4V

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  36087a753f7ea44e89cd14e75709a1bfdacb708dc224820678cd9fb5f9c9790a
- Size
  
  7.7MB
- MD5
  
  c86a4ada44b10a4378d79ea2c4e70df7
- SHA1
  
  b6553db7022db6ea68e9998c234fc8795e311ff2
- SHA256
  
  36087a753f7ea44e89cd14e75709a1bfdacb708dc224820678cd9fb5f9c9790a
- SHA512
  
  364335ee0669793bb33e508f96b91d554868d4f5124d822bb8408ff706c9a028e332b3d378b4c47f02c45805d2ec68d57ab8f962946c5c31519209e01335310c
- SSDEEP
  
  98304:tr0qeUA5B9jDLyxt2l5w2SKXIlBE8qgk1uGYEmajpGyrWR17tsPdCO1:t0dB9zokw2KBqQG5pGYWj4V
Score

7^/10

discovery persistence
- Executes dropped EXE
- Adds Run key to start application
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence