337c6933d00779770bb0bcea125fec388c0d2379c6f4371f29a209e1e0b90f89 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

337c6933d00779770bb0bcea125fec388c0d2379c6f4371f29a209e1e0b90f89
Size

42KB
Sample

240727-zpk3rs1gmb
MD5

485f9804abecf80c3e56817dc986f896
SHA1

8069fd0d2625f01fcd6ea2fa76622f8db94ab8a8
SHA256

337c6933d00779770bb0bcea125fec388c0d2379c6f4371f29a209e1e0b90f89
SHA512

585e75d3297a2937587bc79a015d9305cd330d1307f919f9dc6cb96dcb1d6f1038847c6a04e328a41524ef13b9c9c6f5a548fb737c240d9f5a7f13a1eef281be
SSDEEP

768:DqPJtsA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EfKYfdhNhK:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYq

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  337c6933d00779770bb0bcea125fec388c0d2379c6f4371f29a209e1e0b90f89
- Size
  
  42KB
- MD5
  
  485f9804abecf80c3e56817dc986f896
- SHA1
  
  8069fd0d2625f01fcd6ea2fa76622f8db94ab8a8
- SHA256
  
  337c6933d00779770bb0bcea125fec388c0d2379c6f4371f29a209e1e0b90f89
- SHA512
  
  585e75d3297a2937587bc79a015d9305cd330d1307f919f9dc6cb96dcb1d6f1038847c6a04e328a41524ef13b9c9c6f5a548fb737c240d9f5a7f13a1eef281be
- SSDEEP
  
  768:DqPJtsA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EfKYfdhNhK:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYq
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence