3a01e2ecbaf1fbc211c3028a439c2a5cf1ce613452409a7a4f7ef18aaa9d0a0c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3a01e2ecbaf1fbc211c3028a439c2a5cf1ce613452409a7a4f7ef18aaa9d0a0c
Size

7.7MB
Sample

230521-xrqd6aeg3y
MD5

2462e60f3297d545c5ed7e76ccb42ce3
SHA1

2fe9fcf87ce4c56257106affe08e7b0959de2be0
SHA256

3a01e2ecbaf1fbc211c3028a439c2a5cf1ce613452409a7a4f7ef18aaa9d0a0c
SHA512

b2bfa7ff2f418b5b7ec1016af7e400c075c737aa040a42341f5f91288bc634cd33b1cdeb87b0770c64038012ae480f39ae15bbd8c1053b676f4a24769bba55c1
SSDEEP

98304:52caRVJt7QE+M0ydCvnySGijMKm8KYC4ScmBLvrkbo5DN1tZ:5U3l17C/VGMC4ShLvr0o5DN13

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  3a01e2ecbaf1fbc211c3028a439c2a5cf1ce613452409a7a4f7ef18aaa9d0a0c
- Size
  
  7.7MB
- MD5
  
  2462e60f3297d545c5ed7e76ccb42ce3
- SHA1
  
  2fe9fcf87ce4c56257106affe08e7b0959de2be0
- SHA256
  
  3a01e2ecbaf1fbc211c3028a439c2a5cf1ce613452409a7a4f7ef18aaa9d0a0c
- SHA512
  
  b2bfa7ff2f418b5b7ec1016af7e400c075c737aa040a42341f5f91288bc634cd33b1cdeb87b0770c64038012ae480f39ae15bbd8c1053b676f4a24769bba55c1
- SSDEEP
  
  98304:52caRVJt7QE+M0ydCvnySGijMKm8KYC4ScmBLvrkbo5DN1tZ:5U3l17C/VGMC4ShLvr0o5DN13
Score

7^/10

discovery persistence
- Executes dropped EXE
- Adds Run key to start application
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence