ca0d835257271e992ea65e53003f1e771a341e7ce821d0e02d4057bbbd039a38 | Triage

Sharing

General

Target

57a5f42392490b5dc6d155acf13ddce0N.exe
Size

408KB
Sample

240726-cwdwps1akl
MD5

57a5f42392490b5dc6d155acf13ddce0
SHA1

60fae277651370c463a6ef7d3463390c6e16fe0b
SHA256

ca0d835257271e992ea65e53003f1e771a341e7ce821d0e02d4057bbbd039a38
SHA512

2a60fabbfbeb23fbc658921c2f3703dce9cfce18beb318d6ae6c27c6966eefe40c318d61f7e2c1ebf64c76ffe0f56da088eb66566e2cc429fd18a470b8565c2e
SSDEEP

3072:CEGh0o/l3OiNOe2MUVg3bHrH/HqOYGte+rcC4F0fJGRIS8Rfd7eQEcGcrTutTBf3:CEG5ldOe2MUVg3vTeKcAEciTBqr3jy

Score

8^/10

discovery persistence

Malware Config

Targets

- Target
  
  57a5f42392490b5dc6d155acf13ddce0N.exe
- Size
  
  408KB
- MD5
  
  57a5f42392490b5dc6d155acf13ddce0
- SHA1
  
  60fae277651370c463a6ef7d3463390c6e16fe0b
- SHA256
  
  ca0d835257271e992ea65e53003f1e771a341e7ce821d0e02d4057bbbd039a38
- SHA512
  
  2a60fabbfbeb23fbc658921c2f3703dce9cfce18beb318d6ae6c27c6966eefe40c318d61f7e2c1ebf64c76ffe0f56da088eb66566e2cc429fd18a470b8565c2e
- SSDEEP
  
  3072:CEGh0o/l3OiNOe2MUVg3bHrH/HqOYGte+rcC4F0fJGRIS8Rfd7eQEcGcrTutTBf3:CEG5ldOe2MUVg3vTeKcAEciTBqr3jy
Score

8^/10

discovery persistence
- Boot or Logon Autostart Execution: Active Setup
  Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
  persistence
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Active Setup

Privilege Escalation

Boot or Logon Autostart Execution

Active Setup

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence