98fe47367996997628403d1beb7edc60a2bf1456b4e57f4a9afc5cb5d3631347 | Triage

Sharing

General

Target

98fe47367996997628403d1beb7edc60a2bf1456b4e57f4a9afc5cb5d3631347
Size

262KB
Sample

240724-azp22axfrl
MD5

d91a607df4a30a22d89c4d305cb0d7b3
SHA1

bc0a75faf4d36a2cfae9299fb21ed4ab1eba2acc
SHA256

98fe47367996997628403d1beb7edc60a2bf1456b4e57f4a9afc5cb5d3631347
SHA512

6c7e8f295026bab53dae095a36ba40236af2b25a78139e2cd12d3a77eb8513749578fce23dff0ace8ba6a7556e9e6e6d8a5f188ac7062d69a08bc27f2e6b22a7
SSDEEP

6144:sdZUUZyznmkyANv494D83X5Dw0jUVOv0KEEMHHEMHk:qaUZ+nmkyANv494D83XE8nMEME

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  98fe47367996997628403d1beb7edc60a2bf1456b4e57f4a9afc5cb5d3631347
- Size
  
  262KB
- MD5
  
  d91a607df4a30a22d89c4d305cb0d7b3
- SHA1
  
  bc0a75faf4d36a2cfae9299fb21ed4ab1eba2acc
- SHA256
  
  98fe47367996997628403d1beb7edc60a2bf1456b4e57f4a9afc5cb5d3631347
- SHA512
  
  6c7e8f295026bab53dae095a36ba40236af2b25a78139e2cd12d3a77eb8513749578fce23dff0ace8ba6a7556e9e6e6d8a5f188ac7062d69a08bc27f2e6b22a7
- SSDEEP
  
  6144:sdZUUZyznmkyANv494D83X5Dw0jUVOv0KEEMHHEMHk:qaUZ+nmkyANv494D83XE8nMEME
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2