249d05d3e7f93b4df0caa04bc8f0bad0975673919af8fcc91c02e903fb70d62f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

249d05d3e7f93b4df0caa04bc8f0bad0975673919af8fcc91c02e903fb70d62f.exe
Size

311KB
Sample

240522-jr58qaha31
MD5

117f331eabb1d75dc4273503e1293890
SHA1

553862a68f961f1ca44d73a06b2352d995fe0864
SHA256

249d05d3e7f93b4df0caa04bc8f0bad0975673919af8fcc91c02e903fb70d62f
SHA512

d7fbabad2d95c722df137a3c4764aa52424d3f06332fa86c461621281d30570904d6df27b27a4353c9c04cfa3b5b3f66dac72051b168d34d61931bfbd611fd21
SSDEEP

3072:HQC/yj5JO3MnSG+Hu54Fx4xE8pLRkgUA1nQZwFGVO4Mqg+WDe:wlj7cMnL+OEXOLRp1nQ4QLL

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  249d05d3e7f93b4df0caa04bc8f0bad0975673919af8fcc91c02e903fb70d62f.exe
- Size
  
  311KB
- MD5
  
  117f331eabb1d75dc4273503e1293890
- SHA1
  
  553862a68f961f1ca44d73a06b2352d995fe0864
- SHA256
  
  249d05d3e7f93b4df0caa04bc8f0bad0975673919af8fcc91c02e903fb70d62f
- SHA512
  
  d7fbabad2d95c722df137a3c4764aa52424d3f06332fa86c461621281d30570904d6df27b27a4353c9c04cfa3b5b3f66dac72051b168d34d61931bfbd611fd21
- SSDEEP
  
  3072:HQC/yj5JO3MnSG+Hu54Fx4xE8pLRkgUA1nQZwFGVO4Mqg+WDe:wlj7cMnL+OEXOLRp1nQ4QLL
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2