2a386580a2505fe8a65df05f28aca36fbf9bf1433fb5b237d99cf2b195aa843a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2a386580a2505fe8a65df05f28aca36fbf9bf1433fb5b237d99cf2b195aa843a
Size

69KB
Sample

240502-yng42sef7v
MD5

0ff20d8eac4a0dad5bb8520f3fa7171f
SHA1

357a615f1e4f44f1dc6a4e6c26a78fc2c3fca22f
SHA256

2a386580a2505fe8a65df05f28aca36fbf9bf1433fb5b237d99cf2b195aa843a
SHA512

3e4dbd7749078b91cad2a3aa68624d561a5553d3e4ed70b91fada3e618518f4726b66b80cfd7cf4cdad281590463c2fcd6f9d3db76a983fc0ea2bf7f5dd9f2fd
SSDEEP

1536:NDj2d6rnJbJnJBSX1nV1b1N1Il1k1YFI1x1J1MuEqx517Q/1T1Jzct01Nsqnl1R9:FlnnJBSX1nV1b1N1Il1k1YFI1x1J1MuG

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  2a386580a2505fe8a65df05f28aca36fbf9bf1433fb5b237d99cf2b195aa843a
- Size
  
  69KB
- MD5
  
  0ff20d8eac4a0dad5bb8520f3fa7171f
- SHA1
  
  357a615f1e4f44f1dc6a4e6c26a78fc2c3fca22f
- SHA256
  
  2a386580a2505fe8a65df05f28aca36fbf9bf1433fb5b237d99cf2b195aa843a
- SHA512
  
  3e4dbd7749078b91cad2a3aa68624d561a5553d3e4ed70b91fada3e618518f4726b66b80cfd7cf4cdad281590463c2fcd6f9d3db76a983fc0ea2bf7f5dd9f2fd
- SSDEEP
  
  1536:NDj2d6rnJbJnJBSX1nV1b1N1Il1k1YFI1x1J1MuEqx517Q/1T1Jzct01Nsqnl1R9:FlnnJBSX1nV1b1N1Il1k1YFI1x1J1MuG
Score

7^/10

persistence
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2