39a0451d3c987ee0ff19db6e3b144cba2667c07884fd7c194ba1889df008140c | Triage

Resubmissions

11-05-2024 04:32

240511-e6ft6agb47 6

11-05-2024 04:30

240511-e46ykaga62 6

Sharing

General

Target

main.exe
Size

14.2MB
Sample

240511-e6ft6agb47
MD5

97910039db264e4641c49a4bcb813b8d
SHA1

74e03a5bc784c2a5c4c17a6dacb3996a4f04b68f
SHA256

39a0451d3c987ee0ff19db6e3b144cba2667c07884fd7c194ba1889df008140c
SHA512

a8024c9af0d34b5dd995bd9a002a4191c79cabb8942e6e7f864378866bffe178f3603d89d3e4b0d9c09d6ebbd6879123c3b54f06be7b34b4a5f1238407774e21
SSDEEP

196608:GUmgKsX0PrXwDjFD4fedVZ41z0uCrdExayT8:GJgfnjeO1uCrdExam

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  main.exe
- Size
  
  14.2MB
- MD5
  
  97910039db264e4641c49a4bcb813b8d
- SHA1
  
  74e03a5bc784c2a5c4c17a6dacb3996a4f04b68f
- SHA256
  
  39a0451d3c987ee0ff19db6e3b144cba2667c07884fd7c194ba1889df008140c
- SHA512
  
  a8024c9af0d34b5dd995bd9a002a4191c79cabb8942e6e7f864378866bffe178f3603d89d3e4b0d9c09d6ebbd6879123c3b54f06be7b34b4a5f1238407774e21
- SSDEEP
  
  196608:GUmgKsX0PrXwDjFD4fedVZ41z0uCrdExayT8:GJgfnjeO1uCrdExam
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1