af7989432d83bd679e5e3bd18b4387c5c42701203d24c4a3be6d7744617ca251 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a14a42f05e507413dee17c4aacd2ddc0N.exe
Size

40KB
Sample

240727-g9sdgavdme
MD5

a14a42f05e507413dee17c4aacd2ddc0
SHA1

66940d7a72390bec21667a5122bc793d9e4c2d86
SHA256

af7989432d83bd679e5e3bd18b4387c5c42701203d24c4a3be6d7744617ca251
SHA512

3416830828ca418ed23ba9369ccd19165659d3301c69e19802be3db1463ab7e32d8d8bb2e60e8a751414b5ca423bc71477bf10e40a89a45ac6ba7a8fa85e5044
SSDEEP

768:DqPJtsA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EfKYfdhNhH:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYn

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  a14a42f05e507413dee17c4aacd2ddc0N.exe
- Size
  
  40KB
- MD5
  
  a14a42f05e507413dee17c4aacd2ddc0
- SHA1
  
  66940d7a72390bec21667a5122bc793d9e4c2d86
- SHA256
  
  af7989432d83bd679e5e3bd18b4387c5c42701203d24c4a3be6d7744617ca251
- SHA512
  
  3416830828ca418ed23ba9369ccd19165659d3301c69e19802be3db1463ab7e32d8d8bb2e60e8a751414b5ca423bc71477bf10e40a89a45ac6ba7a8fa85e5044
- SSDEEP
  
  768:DqPJtsA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EfKYfdhNhH:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYn
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence