20dc3b1317a838648dc1dc96305ccdcdf5c989324f5705db27ba7e1c5c433c62 | Triage

Sharing

General

Target

20dc3b1317a838648dc1dc96305ccdcdf5c989324f5705db27ba7e1c5c433c62
Size

36KB
Sample

240616-x4q68atfjd
MD5

57cad52815f2f380363b6cc29e845ffd
SHA1

9645115b0bb6c7a0902fcd9e941a95f8b5ad5f2e
SHA256

20dc3b1317a838648dc1dc96305ccdcdf5c989324f5705db27ba7e1c5c433c62
SHA512

e20cb1b77c2836a1a4310ed5466378023e9d255807cd6b80148eed29a086d523f407b7e816d708f2ac5bfbbb17d69d6e8cce1096040d7a0d30a3550c7aa6f96b
SSDEEP

768:DqPJtsA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EfKYfdhNhr:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYL

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  20dc3b1317a838648dc1dc96305ccdcdf5c989324f5705db27ba7e1c5c433c62
- Size
  
  36KB
- MD5
  
  57cad52815f2f380363b6cc29e845ffd
- SHA1
  
  9645115b0bb6c7a0902fcd9e941a95f8b5ad5f2e
- SHA256
  
  20dc3b1317a838648dc1dc96305ccdcdf5c989324f5705db27ba7e1c5c433c62
- SHA512
  
  e20cb1b77c2836a1a4310ed5466378023e9d255807cd6b80148eed29a086d523f407b7e816d708f2ac5bfbbb17d69d6e8cce1096040d7a0d30a3550c7aa6f96b
- SSDEEP
  
  768:DqPJtsA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EfKYfdhNhr:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYL
Score

7^/10

persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2