1fd94245cf27791319020dc132489b1015936d103dbded8b174c8a7d466173a0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d791f39f9f8772f7987b2cdd267fa740N.exe
Size

440KB
Sample

240725-rjnmpssgml
MD5

d791f39f9f8772f7987b2cdd267fa740
SHA1

602b199cabafdc7a09e188d3136fd306c7066173
SHA256

1fd94245cf27791319020dc132489b1015936d103dbded8b174c8a7d466173a0
SHA512

cf6169d545b259274f097e6d342bc6e9397b96f58827537dc4edf7c18cc54ec0e9d31873b2265526265fb4de369fec8c62d04ee2d2450c6140ef623751daff03
SSDEEP

12288:JHhftsvpSfCludXukNtI0hslOYlTMLW9l4h19TzkL:JHySxd+k/hWTl439To

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  d791f39f9f8772f7987b2cdd267fa740N.exe
- Size
  
  440KB
- MD5
  
  d791f39f9f8772f7987b2cdd267fa740
- SHA1
  
  602b199cabafdc7a09e188d3136fd306c7066173
- SHA256
  
  1fd94245cf27791319020dc132489b1015936d103dbded8b174c8a7d466173a0
- SHA512
  
  cf6169d545b259274f097e6d342bc6e9397b96f58827537dc4edf7c18cc54ec0e9d31873b2265526265fb4de369fec8c62d04ee2d2450c6140ef623751daff03
- SSDEEP
  
  12288:JHhftsvpSfCludXukNtI0hslOYlTMLW9l4h19TzkL:JHySxd+k/hWTl439To
Score

7^/10

discovery
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2