698bc9cb6f6f8eea4b6c7765c0383235d5156040abd059277c380021a5a5e120 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c8a6ce5041c9a290907db68970a5c5c8
Size

46KB
Sample

240314-pzq2nacd2v
MD5

c8a6ce5041c9a290907db68970a5c5c8
SHA1

b345f5127baa825f40de7911b923c9e65d3a0c5f
SHA256

698bc9cb6f6f8eea4b6c7765c0383235d5156040abd059277c380021a5a5e120
SHA512

17ca677c4aac69742efcb0563bfbfe5dcc756a284168fd7b77789533ddd07d2511837d1687852c84dd4e09a46df0914859fd597099c4ba2513244f49b99334ce
SSDEEP

768:QY5j+3d5Nk5GsUAiR/Y0Sv9neJ0TsQ0aGaONSF9c/6MmZjzHlmX5h/ROKbDCrmsO:QIj+trmGsUxQ0SlS06VNEGtQjzHlmX5T

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  c8a6ce5041c9a290907db68970a5c5c8
- Size
  
  46KB
- MD5
  
  c8a6ce5041c9a290907db68970a5c5c8
- SHA1
  
  b345f5127baa825f40de7911b923c9e65d3a0c5f
- SHA256
  
  698bc9cb6f6f8eea4b6c7765c0383235d5156040abd059277c380021a5a5e120
- SHA512
  
  17ca677c4aac69742efcb0563bfbfe5dcc756a284168fd7b77789533ddd07d2511837d1687852c84dd4e09a46df0914859fd597099c4ba2513244f49b99334ce
- SSDEEP
  
  768:QY5j+3d5Nk5GsUAiR/Y0Sv9neJ0TsQ0aGaONSF9c/6MmZjzHlmX5h/ROKbDCrmsO:QIj+trmGsUxQ0SlS06VNEGtQjzHlmX5T
Score

8^/10

persistence
- Adds policy Run key to start application
  persistence
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2