18f19d6a088cbbd34c7746594567cf6057917fe76ad39d51d8d44661ddb7cd57 | Triage

Sharing

General

Target

400bb9c62735a23a3d4fa824e949cc30_exe32.exe
Size

168KB
Sample

231015-ybl78sda69
MD5

400bb9c62735a23a3d4fa824e949cc30
SHA1

997e89d83cd568a4dfbdcbaca078c56573794f66
SHA256

18f19d6a088cbbd34c7746594567cf6057917fe76ad39d51d8d44661ddb7cd57
SHA512

e7a56cbc4612834021ffcce7ae94adf5d204792384aa1f050a956d6659b0282f13840020a3e7dcf666c42835e5d5df62939c2ff151ab33a2400ccd44bc6d02f5
SSDEEP

192:pbOzawOs81elJHsc45CcRZOgtShcWaOT2QLrCqwoZ4/CFxyNhoy5t:pbLwOs8AHsc4sMfwhKQLro64/CFsrd

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  400bb9c62735a23a3d4fa824e949cc30_exe32.exe
- Size
  
  168KB
- MD5
  
  400bb9c62735a23a3d4fa824e949cc30
- SHA1
  
  997e89d83cd568a4dfbdcbaca078c56573794f66
- SHA256
  
  18f19d6a088cbbd34c7746594567cf6057917fe76ad39d51d8d44661ddb7cd57
- SHA512
  
  e7a56cbc4612834021ffcce7ae94adf5d204792384aa1f050a956d6659b0282f13840020a3e7dcf666c42835e5d5df62939c2ff151ab33a2400ccd44bc6d02f5
- SSDEEP
  
  192:pbOzawOs81elJHsc45CcRZOgtShcWaOT2QLrCqwoZ4/CFxyNhoy5t:pbLwOs8AHsc4sMfwhKQLro64/CFsrd
Score

8^/10

persistence
- Modifies Installed Components in the registry
  persistence
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2