664a5b96897f59dda95828636d26494826f5ea5f4351bcb05e2b1d17522c7df6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

664a5b96897f59dda95828636d26494826f5ea5f4351bcb05e2b1d17522c7df6
Size

31KB
Sample

240428-1wb9waae7y
MD5

980cef1a713e80f1abf7601a6cd952be
SHA1

5cf26101a663a547409e67b5eb0dcaaef1d5efeb
SHA256

664a5b96897f59dda95828636d26494826f5ea5f4351bcb05e2b1d17522c7df6
SHA512

4a21b28cadb3c33963464e68ecbcd9e2509e489ffe8eb9c860636bbc92f6152654becf4bc68355f72e877e7460dc53fe40978591a9acdeb75c1ead8e8f35a3f7
SSDEEP

768:/qPJtHA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EfKYfdhNhD:/qnA6C1VqaqhtgVRNToV7TtRu8rM0wYj

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  664a5b96897f59dda95828636d26494826f5ea5f4351bcb05e2b1d17522c7df6
- Size
  
  31KB
- MD5
  
  980cef1a713e80f1abf7601a6cd952be
- SHA1
  
  5cf26101a663a547409e67b5eb0dcaaef1d5efeb
- SHA256
  
  664a5b96897f59dda95828636d26494826f5ea5f4351bcb05e2b1d17522c7df6
- SHA512
  
  4a21b28cadb3c33963464e68ecbcd9e2509e489ffe8eb9c860636bbc92f6152654becf4bc68355f72e877e7460dc53fe40978591a9acdeb75c1ead8e8f35a3f7
- SSDEEP
  
  768:/qPJtHA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EfKYfdhNhD:/qnA6C1VqaqhtgVRNToV7TtRu8rM0wYj
Score

7^/10

persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2