b16fbc4e21f58f65ffd6d3d2ca4ecc2be6b3a6c732e64e73fa2d8f706000e764 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5864b7995de03cexeexeexeex.exe
Size

372KB
Sample

230707-y7pcgabd82
MD5

5864b7995de03c7dc0928291eaf56a14
SHA1

bf07c09ad060edd3a215738eee03003040e25865
SHA256

b16fbc4e21f58f65ffd6d3d2ca4ecc2be6b3a6c732e64e73fa2d8f706000e764
SHA512

0e563db012ff20e3a92fa5f35d298029afa808d54174ca3a69b521885ae92e74783f98c9e2ea64e7a39834a10c8b07820d5a9b6cb08a09903f166b4b51a6d7ca
SSDEEP

3072:CEGh0oomlJOiNOe2MUVg3bHrH/HqOYGte+rcC4F0fJGRIS8Rfd7eQEcGcrTutTBE:CEGnl/Oe2MUVg3vTeKcAEciTBqr3

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  5864b7995de03cexeexeexeex.exe
- Size
  
  372KB
- MD5
  
  5864b7995de03c7dc0928291eaf56a14
- SHA1
  
  bf07c09ad060edd3a215738eee03003040e25865
- SHA256
  
  b16fbc4e21f58f65ffd6d3d2ca4ecc2be6b3a6c732e64e73fa2d8f706000e764
- SHA512
  
  0e563db012ff20e3a92fa5f35d298029afa808d54174ca3a69b521885ae92e74783f98c9e2ea64e7a39834a10c8b07820d5a9b6cb08a09903f166b4b51a6d7ca
- SSDEEP
  
  3072:CEGh0oomlJOiNOe2MUVg3bHrH/HqOYGte+rcC4F0fJGRIS8Rfd7eQEcGcrTutTBE:CEGnl/Oe2MUVg3vTeKcAEciTBqr3
Score

8^/10

persistence
- Modifies Installed Components in the registry
  persistence
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2