3aae2f27add3a34d77352ff4232b58a3d92f4e8c2a9f21d829959bb2d7ab9ba0 | Triage

Sharing

General

Target

3aae2f27add3a34d77352ff4232b58a3d92f4e8c2a9f21d829959bb2d7ab9ba0
Size

21KB
Sample

240314-xgsfrseb74
MD5

d6ab131a312199730c9fa0595f81160c
SHA1

e7b787c4c1eff70656563b3c8c4027c71a8ebdbc
SHA256

3aae2f27add3a34d77352ff4232b58a3d92f4e8c2a9f21d829959bb2d7ab9ba0
SHA512

52c3902a70ecdd4e17dfc1e3e2877784e7d047eba5058bfa71924dc131ed120d1404446373b772b61ce13a07326883680387eb1246e8d934c865c53f341304a9
SSDEEP

384:KICKqPF/EkecA6C1VqahohtgVRNVdoV7TtRu8rM/dWwYVFl2g5coW58dO0xXHV2l:7qPJtecA6C1VqahohtgVRNToV7TtRu8V

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  3aae2f27add3a34d77352ff4232b58a3d92f4e8c2a9f21d829959bb2d7ab9ba0
- Size
  
  21KB
- MD5
  
  d6ab131a312199730c9fa0595f81160c
- SHA1
  
  e7b787c4c1eff70656563b3c8c4027c71a8ebdbc
- SHA256
  
  3aae2f27add3a34d77352ff4232b58a3d92f4e8c2a9f21d829959bb2d7ab9ba0
- SHA512
  
  52c3902a70ecdd4e17dfc1e3e2877784e7d047eba5058bfa71924dc131ed120d1404446373b772b61ce13a07326883680387eb1246e8d934c865c53f341304a9
- SSDEEP
  
  384:KICKqPF/EkecA6C1VqahohtgVRNVdoV7TtRu8rM/dWwYVFl2g5coW58dO0xXHV2l:7qPJtecA6C1VqahohtgVRNToV7TtRu8V
Score

7^/10

persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2