358a0a820e26b0a73df2528c783174a90d2c631c08904c61070fcaf67e10224e | Triage

Sharing

General

Target

HEUR-Trojan.Win32.Generic-358a0a820e26b0a73df2528c783174a90d2c631c08904c61070fcaf67e10224e
Size

90KB
Sample

240229-jjarvaag36
MD5

7cb7e384605f7e3db2c9414d78eb6509
SHA1

e9444d595858515bdffebac94797ed6f793be476
SHA256

358a0a820e26b0a73df2528c783174a90d2c631c08904c61070fcaf67e10224e
SHA512

02d256cdddc81a6739f912f969d96e0fb426aee626f96a236d11d6c7625e2f8730026d7d10272ae69b2d40e7b9e92c7e8d9d3dd1f381b3ea2387f6424dff7d47
SSDEEP

1536:NDj2d6rnJbJnJBSX1nV1b1N1Il1k1YFI1x1J1MuEqx517Q/1T1Jzct01Nsqnl1RJ:FlnnJBSX1nV1b1N1Il1k1YFI1x1J1Mu2

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  HEUR-Trojan.Win32.Generic-358a0a820e26b0a73df2528c783174a90d2c631c08904c61070fcaf67e10224e
- Size
  
  90KB
- MD5
  
  7cb7e384605f7e3db2c9414d78eb6509
- SHA1
  
  e9444d595858515bdffebac94797ed6f793be476
- SHA256
  
  358a0a820e26b0a73df2528c783174a90d2c631c08904c61070fcaf67e10224e
- SHA512
  
  02d256cdddc81a6739f912f969d96e0fb426aee626f96a236d11d6c7625e2f8730026d7d10272ae69b2d40e7b9e92c7e8d9d3dd1f381b3ea2387f6424dff7d47
- SSDEEP
  
  1536:NDj2d6rnJbJnJBSX1nV1b1N1Il1k1YFI1x1J1MuEqx517Q/1T1Jzct01Nsqnl1RJ:FlnnJBSX1nV1b1N1Il1k1YFI1x1J1Mu2
Score

7^/10

persistence
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2