e79eeddea328c8c1d09a65680408d3d71c6c966423ef6c55c5fcb9e0d06fd204 | Triage

Sharing

General

Target

e79eeddea328c8c1d09a65680408d3d71c6c966423ef6c55c5fcb9e0d06fd204
Size

90KB
Sample

240726-fp9ataxgpp
MD5

b818cbc08350fa84e9851d85c2ee88ae
SHA1

47ce228e0989c98425de8f1dfb774fdc6edd7e3e
SHA256

e79eeddea328c8c1d09a65680408d3d71c6c966423ef6c55c5fcb9e0d06fd204
SHA512

af0c5c52bb4ba0340fb95c507321fd4279d64f5514a7401a33d3284159036400a7c7a9dda1a1f259217b679de5c8efe8bd17d8938784fb9111b5362d7f1d0814
SSDEEP

768:Qvw9816vhKQLroM4/wQRNrfrunMxVFA3b7glw:YEGh0oMl2unMxVS3Hg

Score

8^/10

discovery persistence

Malware Config

Targets

- Target
  
  e79eeddea328c8c1d09a65680408d3d71c6c966423ef6c55c5fcb9e0d06fd204
- Size
  
  90KB
- MD5
  
  b818cbc08350fa84e9851d85c2ee88ae
- SHA1
  
  47ce228e0989c98425de8f1dfb774fdc6edd7e3e
- SHA256
  
  e79eeddea328c8c1d09a65680408d3d71c6c966423ef6c55c5fcb9e0d06fd204
- SHA512
  
  af0c5c52bb4ba0340fb95c507321fd4279d64f5514a7401a33d3284159036400a7c7a9dda1a1f259217b679de5c8efe8bd17d8938784fb9111b5362d7f1d0814
- SSDEEP
  
  768:Qvw9816vhKQLroM4/wQRNrfrunMxVFA3b7glw:YEGh0oMl2unMxVS3Hg
Score

8^/10

discovery persistence
- Boot or Logon Autostart Execution: Active Setup
  Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
  persistence
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Active Setup

Privilege Escalation

Boot or Logon Autostart Execution

Active Setup

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence