c1f2730c025e48c6900ca721ff01a76e2c617d2d3817e01118ffe3f9eae946ec | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c1f2730c025e48c6900ca721ff01a76e2c617d2d3817e01118ffe3f9eae946ec
Size

7.1MB
Sample

230529-s9lrgace52
MD5

5edb95160a9a3c15bf3419ec6382e9e3
SHA1

3906e8affad47c8377c13c355df0cf732be5a7c5
SHA256

c1f2730c025e48c6900ca721ff01a76e2c617d2d3817e01118ffe3f9eae946ec
SHA512

35279852e35d77957e7778b89f130fb564793faabb79147bbd5f35fa53bd1c1569fe6415b629db2da25ae081f8be5f0608faeaddf3d17f45be145d0c46f54d4d
SSDEEP

98304:2aFwfgSa0rogZ+4nw3kfWHh3NSz+ylOaoK3RAKbpMziNCxY:2MwZ9oG+Qw2WHhczthBAcpMGNe

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  c1f2730c025e48c6900ca721ff01a76e2c617d2d3817e01118ffe3f9eae946ec
- Size
  
  7.1MB
- MD5
  
  5edb95160a9a3c15bf3419ec6382e9e3
- SHA1
  
  3906e8affad47c8377c13c355df0cf732be5a7c5
- SHA256
  
  c1f2730c025e48c6900ca721ff01a76e2c617d2d3817e01118ffe3f9eae946ec
- SHA512
  
  35279852e35d77957e7778b89f130fb564793faabb79147bbd5f35fa53bd1c1569fe6415b629db2da25ae081f8be5f0608faeaddf3d17f45be145d0c46f54d4d
- SSDEEP
  
  98304:2aFwfgSa0rogZ+4nw3kfWHh3NSz+ylOaoK3RAKbpMziNCxY:2MwZ9oG+Qw2WHhczthBAcpMGNe
Score

7^/10

discovery persistence
- Executes dropped EXE
- Adds Run key to start application
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence