36b8315074a8393334744bc03cca0498b7483b7f2344ac79ff1aa7a7127510c7 | Triage

Sharing

General

Target

b72641e0527ebee19a3899e465524035
Size

48KB
Sample

240306-l3rktage3t
MD5

b72641e0527ebee19a3899e465524035
SHA1

4f9a204957ee12c09cd95863c427fb44b182287a
SHA256

36b8315074a8393334744bc03cca0498b7483b7f2344ac79ff1aa7a7127510c7
SHA512

8c5734571fd33eb81252011bb4ace04dd4bafe311aea79b345d4c2206559e6ad2cad77e1311abebf7ab881f9aa6be89ba857cf720e74e0e5769089b9239bc0cc
SSDEEP

768:LY14ZgXRJHZZ619nzw1veq2ryvlfhM51CjScMJspgoSv2XzJNP4Xh9Gzs6L:E14u4nzwo1yvla59s59g9GzZL

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  b72641e0527ebee19a3899e465524035
- Size
  
  48KB
- MD5
  
  b72641e0527ebee19a3899e465524035
- SHA1
  
  4f9a204957ee12c09cd95863c427fb44b182287a
- SHA256
  
  36b8315074a8393334744bc03cca0498b7483b7f2344ac79ff1aa7a7127510c7
- SHA512
  
  8c5734571fd33eb81252011bb4ace04dd4bafe311aea79b345d4c2206559e6ad2cad77e1311abebf7ab881f9aa6be89ba857cf720e74e0e5769089b9239bc0cc
- SSDEEP
  
  768:LY14ZgXRJHZZ619nzw1veq2ryvlfhM51CjScMJspgoSv2XzJNP4Xh9Gzs6L:E14u4nzwo1yvla59s59g9GzZL
Score

8^/10

persistence
- Sets service image path in registry
  persistence
- Deletes itself
- Executes dropped EXE
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2