0f2d038559ea5159869d2cfee760f56911077ca9ff7f7ef6fec68550009af387 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0f2d038559ea5159869d2cfee760f56911077ca9ff7f7ef6fec68550009af387
Size

89KB
Sample

240516-xetaaaag56
MD5

86bef13d7b930b796dfdcad9e4652844
SHA1

70b744ef45703e269c175bbb7dd4e02081a0c11c
SHA256

0f2d038559ea5159869d2cfee760f56911077ca9ff7f7ef6fec68550009af387
SHA512

5b662c8ec94a4f18883e9761a176f2449727f58303c0ed32f11c4ccd6d282606d99d1d9b4286bc9164e858cb47fba56ed180602182a19e58edc7af168e2e2b69
SSDEEP

768:5vw9816thKQLroL4/wQkNrfrunMxVFA3k:lEG/0oLlbunMxVS3k

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  0f2d038559ea5159869d2cfee760f56911077ca9ff7f7ef6fec68550009af387
- Size
  
  89KB
- MD5
  
  86bef13d7b930b796dfdcad9e4652844
- SHA1
  
  70b744ef45703e269c175bbb7dd4e02081a0c11c
- SHA256
  
  0f2d038559ea5159869d2cfee760f56911077ca9ff7f7ef6fec68550009af387
- SHA512
  
  5b662c8ec94a4f18883e9761a176f2449727f58303c0ed32f11c4ccd6d282606d99d1d9b4286bc9164e858cb47fba56ed180602182a19e58edc7af168e2e2b69
- SSDEEP
  
  768:5vw9816thKQLroL4/wQkNrfrunMxVFA3k:lEG/0oLlbunMxVS3k
Score

8^/10

persistence
- Modifies Installed Components in the registry
  persistence
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2