9e76b62df00f904edc27aab1c573b7e4fd072dde1aa81de4f8b59fe345fcd03c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ff9f0ef35ea160exeexeexeex.exe
Size

372KB
Sample

230711-wlqmasac98
MD5

ff9f0ef35ea160d6de71758636f86957
SHA1

44adaa40988a3f42ca003db964d7cc205ff13296
SHA256

9e76b62df00f904edc27aab1c573b7e4fd072dde1aa81de4f8b59fe345fcd03c
SHA512

fa3f57db89e3341c7f81d8ce91bf968e2a684460776e7c4851cf88a2bdcdb7de142be79eaf4de168838aae7588a4d4d4da00d841e957bfbbac7ffabe49b34889
SSDEEP

3072:CEGh0oRmlJOiNOe2MUVg3bHrH/HqOYGte+rcC4F0fJGRIS8Rfd7eQEcGcrTutTBE:CEGyl/Oe2MUVg3vTeKcAEciTBqr3

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  ff9f0ef35ea160exeexeexeex.exe
- Size
  
  372KB
- MD5
  
  ff9f0ef35ea160d6de71758636f86957
- SHA1
  
  44adaa40988a3f42ca003db964d7cc205ff13296
- SHA256
  
  9e76b62df00f904edc27aab1c573b7e4fd072dde1aa81de4f8b59fe345fcd03c
- SHA512
  
  fa3f57db89e3341c7f81d8ce91bf968e2a684460776e7c4851cf88a2bdcdb7de142be79eaf4de168838aae7588a4d4d4da00d841e957bfbbac7ffabe49b34889
- SSDEEP
  
  3072:CEGh0oRmlJOiNOe2MUVg3bHrH/HqOYGte+rcC4F0fJGRIS8Rfd7eQEcGcrTutTBE:CEGyl/Oe2MUVg3vTeKcAEciTBqr3
Score

8^/10

persistence
- Modifies Installed Components in the registry
  persistence
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2