5f55072f71a2e9e6ad8cd255d96e5bbbfa718d3c19482b26c9c5e506a2dc226a | Triage

Sharing

General

Target

YouLost.A.exe
Size

7KB
Sample

240408-ntcreagc33
MD5

188f4538be34bb0f15b9e64d539b505c
SHA1

7b130a9c8d17704ac6aa38d2070d91a820d9c533
SHA256

5f55072f71a2e9e6ad8cd255d96e5bbbfa718d3c19482b26c9c5e506a2dc226a
SHA512

ae869ff6cd6d68c1a94e9036381896e3d242193153cad774a8c8ab0f6194c5fe380b4de7e4139c055cd59ed0b3f8b1d08e5bdcddff2b295d356896ef146ea0f3
SSDEEP

48:629N1L+VZ60JIhtmQU0wQEVUeRy7W2lMAoSYOK1y9tPfdQK2XXeFeb1gK0GGeD6o:RNGVhs4V1QKjGbIk9wpKwHHXUbNtq

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  YouLost.A.exe
- Size
  
  7KB
- MD5
  
  188f4538be34bb0f15b9e64d539b505c
- SHA1
  
  7b130a9c8d17704ac6aa38d2070d91a820d9c533
- SHA256
  
  5f55072f71a2e9e6ad8cd255d96e5bbbfa718d3c19482b26c9c5e506a2dc226a
- SHA512
  
  ae869ff6cd6d68c1a94e9036381896e3d242193153cad774a8c8ab0f6194c5fe380b4de7e4139c055cd59ed0b3f8b1d08e5bdcddff2b295d356896ef146ea0f3
- SSDEEP
  
  48:629N1L+VZ60JIhtmQU0wQEVUeRy7W2lMAoSYOK1y9tPfdQK2XXeFeb1gK0GGeD6o:RNGVhs4V1QKjGbIk9wpKwHHXUbNtq
Score

7^/10

persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1