e2458363b08a92790b60e377548744390f48b3cc8b8f782187a3c7a831af207a | Triage

Resubmissions

17-07-2023 16:41

230717-t7cw8aec3x 7

13-07-2023 10:00

230713-l1nq5shb4s 7

12-07-2023 15:27

230712-svrzyaeg9s 7

Sharing

General

Target

e2458363b08a92790b60e377548744390f48b3cc8b8f782187a3c7a831af207a.bin.sample
Size

22KB
Sample

230713-l1nq5shb4s
MD5

d31a84e598ec295a556dcfc5d5275816
SHA1

0c8b18547df5dea26284621c332c1a6c79a7fa5d
SHA256

e2458363b08a92790b60e377548744390f48b3cc8b8f782187a3c7a831af207a
SHA512

4b782f6d5a15f5bc2e0445009778317352d0c1df1c90fa243b580559d4ad1330c0baf5c4ec51d63b22af2fe59c5b1136293d8f6bdebdd67830f8a0f10a76d0b0
SSDEEP

384:3pDiz0KwG26bMJhCFP/jYjaWU4MakAUHJTKGOo2x+PgwgB0VDGXnxPveC5jx2qZ2:3Jv2lY+WyDAUHFyjxOglQcxP842r

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  e2458363b08a92790b60e377548744390f48b3cc8b8f782187a3c7a831af207a.bin.sample
- Size
  
  22KB
- MD5
  
  d31a84e598ec295a556dcfc5d5275816
- SHA1
  
  0c8b18547df5dea26284621c332c1a6c79a7fa5d
- SHA256
  
  e2458363b08a92790b60e377548744390f48b3cc8b8f782187a3c7a831af207a
- SHA512
  
  4b782f6d5a15f5bc2e0445009778317352d0c1df1c90fa243b580559d4ad1330c0baf5c4ec51d63b22af2fe59c5b1136293d8f6bdebdd67830f8a0f10a76d0b0
- SSDEEP
  
  384:3pDiz0KwG26bMJhCFP/jYjaWU4MakAUHJTKGOo2x+PgwgB0VDGXnxPveC5jx2qZ2:3Jv2lY+WyDAUHFyjxOglQcxP842r
Score

7^/10

persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2