8853737e709c3babc9617d20736f62bce79568bdcc6b836740f9d81406875f54 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

$RGVU9YP.exe
Size

1.9MB
Sample

240720-2lm43azgqk
MD5

7cf5d203c45850c07c79ae5b3e79f44c
SHA1

9b9d87e39a2af475d83e88329c1814b994efe211
SHA256

8853737e709c3babc9617d20736f62bce79568bdcc6b836740f9d81406875f54
SHA512

02cff2f9c4f1cb99588c09f25ebf321251a46490300e51be67ced2d9afc0e716ec7e4f9ca04e990929a267d98a761000854828a33be26d0fee0da00f0e4c8901
SSDEEP

49152:tNhxDaGcfgGkABGtmtOvZBzSJtrBmO7iRg6:t5zeJ3t7K

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  $RGVU9YP.exe
- Size
  
  1.9MB
- MD5
  
  7cf5d203c45850c07c79ae5b3e79f44c
- SHA1
  
  9b9d87e39a2af475d83e88329c1814b994efe211
- SHA256
  
  8853737e709c3babc9617d20736f62bce79568bdcc6b836740f9d81406875f54
- SHA512
  
  02cff2f9c4f1cb99588c09f25ebf321251a46490300e51be67ced2d9afc0e716ec7e4f9ca04e990929a267d98a761000854828a33be26d0fee0da00f0e4c8901
- SSDEEP
  
  49152:tNhxDaGcfgGkABGtmtOvZBzSJtrBmO7iRg6:t5zeJ3t7K
Score

8^/10

persistence
- Sets service image path in registry
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2