20d6eae6f1e5ab2e6e05e384605de171eb4702a9a8d4bd6c761e462fcee57033 | Triage

Sharing

General

Target

20d6eae6f1e5ab2e6e05e384605de171eb4702a9a8d4bd6c761e462fcee57033
Size

43KB
Sample

240725-x7pgsszdkj
MD5

30266eab5e9490fe7fe9c512345ed010
SHA1

6d16eb73d292c56b3e5847d77cbf9f92233790d6
SHA256

20d6eae6f1e5ab2e6e05e384605de171eb4702a9a8d4bd6c761e462fcee57033
SHA512

6df07615a837a738b861251023d08a29a65a44dd0878bc1170c1fb6c4e64c73fbd58d91f0d699fa619863b5610388384a8f70a8b105b1edf3e0f1c6dbc4ad098
SSDEEP

768:DqPJtsA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EfKYfdhNhN:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYt

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  20d6eae6f1e5ab2e6e05e384605de171eb4702a9a8d4bd6c761e462fcee57033
- Size
  
  43KB
- MD5
  
  30266eab5e9490fe7fe9c512345ed010
- SHA1
  
  6d16eb73d292c56b3e5847d77cbf9f92233790d6
- SHA256
  
  20d6eae6f1e5ab2e6e05e384605de171eb4702a9a8d4bd6c761e462fcee57033
- SHA512
  
  6df07615a837a738b861251023d08a29a65a44dd0878bc1170c1fb6c4e64c73fbd58d91f0d699fa619863b5610388384a8f70a8b105b1edf3e0f1c6dbc4ad098
- SSDEEP
  
  768:DqPJtsA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EfKYfdhNhN:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYt
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence