237984de0a96a76611dcca08d9461d198e3c2c19465081c5942e1378298df115 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8fd4d9d352c798ff51729822c56dccf0N.exe
Size

20KB
Sample

240727-ezq2jsxckr
MD5

8fd4d9d352c798ff51729822c56dccf0
SHA1

23369383ca90388bbd38c4232b7104122160b6e8
SHA256

237984de0a96a76611dcca08d9461d198e3c2c19465081c5942e1378298df115
SHA512

c3f6ccc6f1e14785ae54e5b5137afcc697ca4063d52dfa0c6d351ab1e1f7120db51b44d44a6a807539086f8cda86ddc480b3910e778f5b165aa3cd36d751f8f0
SSDEEP

384:+J12QAnS0Un/nczA/VlL1nDX9MdO92jAkoetJRv48Z0IM:+n2DVU/nczON1DX8c2UkNtLvaIM

Score

7^/10

defense_evasion discovery

Malware Config

Targets

- Target
  
  8fd4d9d352c798ff51729822c56dccf0N.exe
- Size
  
  20KB
- MD5
  
  8fd4d9d352c798ff51729822c56dccf0
- SHA1
  
  23369383ca90388bbd38c4232b7104122160b6e8
- SHA256
  
  237984de0a96a76611dcca08d9461d198e3c2c19465081c5942e1378298df115
- SHA512
  
  c3f6ccc6f1e14785ae54e5b5137afcc697ca4063d52dfa0c6d351ab1e1f7120db51b44d44a6a807539086f8cda86ddc480b3910e778f5b165aa3cd36d751f8f0
- SSDEEP
  
  384:+J12QAnS0Un/nczA/VlL1nDX9MdO92jAkoetJRv48Z0IM:+n2DVU/nczON1DX8c2UkNtLvaIM
Score

7^/10

defense_evasion discovery
- Deletes itself
- Loads dropped DLL
- Indicator Removal: File Deletion
  Adversaries may delete files left behind by the actions of their intrusion activity.
  defense_evasion
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Indicator Removal

File Deletion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

defense_evasiondiscovery

behavioral2

defense_evasiondiscovery