9e0eda25e9cfb2ee8e7f5e11fccc8fa2c86ed5ee8515cfc5ce166f27a9f22e94 | Triage

Sharing

General

Target

038a9d178b34111fe57ab57f802d8546.exe
Size

578KB
Sample

231230-xlytcabghj
MD5

038a9d178b34111fe57ab57f802d8546
SHA1

7859ac4a85f6add3cace2e57d30ad0acb33dded2
SHA256

9e0eda25e9cfb2ee8e7f5e11fccc8fa2c86ed5ee8515cfc5ce166f27a9f22e94
SHA512

ff0514487e1e33735ecd0ddadc41617db91668d53800c2cd009863d4c72de3ddc17b0d1156a8c73a344cec90ca2612a98b4f3ac0c770eddc786c21ce905008aa
SSDEEP

6144:rFKTotgQSF9opZ4QdQcPatxoZQi/wCVmWNbbEnoLgsIsQzI5nLn9DWZOx:QUgHF9o/7OQrZQ7smEbFMj7cJnT

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  038a9d178b34111fe57ab57f802d8546.exe
- Size
  
  578KB
- MD5
  
  038a9d178b34111fe57ab57f802d8546
- SHA1
  
  7859ac4a85f6add3cace2e57d30ad0acb33dded2
- SHA256
  
  9e0eda25e9cfb2ee8e7f5e11fccc8fa2c86ed5ee8515cfc5ce166f27a9f22e94
- SHA512
  
  ff0514487e1e33735ecd0ddadc41617db91668d53800c2cd009863d4c72de3ddc17b0d1156a8c73a344cec90ca2612a98b4f3ac0c770eddc786c21ce905008aa
- SSDEEP
  
  6144:rFKTotgQSF9opZ4QdQcPatxoZQi/wCVmWNbbEnoLgsIsQzI5nLn9DWZOx:QUgHF9o/7OQrZQ7smEbFMj7cJnT
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2