50f076dc404ac1cf51506939ded14fa53fb7e210d8e06931e0d3c4d84830476f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

50f076dc404ac1cf51506939ded14fa53fb7e210d8e06931e0d3c4d84830476f
Size

34KB
Sample

240613-2qd2ysxelq
MD5

58f19bccd8f93417a1dece2f411c7082
SHA1

844c4df410e4ab0d7d5df8264668d3e32103a1f9
SHA256

50f076dc404ac1cf51506939ded14fa53fb7e210d8e06931e0d3c4d84830476f
SHA512

38d0e7ceb9bc3ac6e0c6dc52839dc165b123bca64c0b66f86789d1fc02c7c4f5f808e78ef326a0a15c8ab8805d690fcbcb81f584a86e6f03fe867e886d30c323
SSDEEP

768:DqPJtsA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EfKYfdhNhk:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYE

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  50f076dc404ac1cf51506939ded14fa53fb7e210d8e06931e0d3c4d84830476f
- Size
  
  34KB
- MD5
  
  58f19bccd8f93417a1dece2f411c7082
- SHA1
  
  844c4df410e4ab0d7d5df8264668d3e32103a1f9
- SHA256
  
  50f076dc404ac1cf51506939ded14fa53fb7e210d8e06931e0d3c4d84830476f
- SHA512
  
  38d0e7ceb9bc3ac6e0c6dc52839dc165b123bca64c0b66f86789d1fc02c7c4f5f808e78ef326a0a15c8ab8805d690fcbcb81f584a86e6f03fe867e886d30c323
- SSDEEP
  
  768:DqPJtsA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EfKYfdhNhk:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYE
Score

7^/10

persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2