65b518e567cb524f4d18295a394e73957928f6ed42f84ba95b1b4b0f17ed296c | Triage

Sharing

General

Target

65b518e567cb524f4d18295a394e73957928f6ed42f84ba95b1b4b0f17ed296c
Size

43KB
Sample

240805-2bx7aathna
MD5

5a42ab9e1e34571c8d7539ab822f4e24
SHA1

76404235aa0fe62d24808afb06f437bd4c620188
SHA256

65b518e567cb524f4d18295a394e73957928f6ed42f84ba95b1b4b0f17ed296c
SHA512

377e1dd6ac47da00b96380a4d7fd836b34f521a9935df7a9cffb5948f26aef8d3fc890c091baedbfc371a22ea087d7139a98e45d74e9ec476256a984b5985671
SSDEEP

768:DqPJtsA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EfKYfdhNhJ:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYp

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  65b518e567cb524f4d18295a394e73957928f6ed42f84ba95b1b4b0f17ed296c
- Size
  
  43KB
- MD5
  
  5a42ab9e1e34571c8d7539ab822f4e24
- SHA1
  
  76404235aa0fe62d24808afb06f437bd4c620188
- SHA256
  
  65b518e567cb524f4d18295a394e73957928f6ed42f84ba95b1b4b0f17ed296c
- SHA512
  
  377e1dd6ac47da00b96380a4d7fd836b34f521a9935df7a9cffb5948f26aef8d3fc890c091baedbfc371a22ea087d7139a98e45d74e9ec476256a984b5985671
- SSDEEP
  
  768:DqPJtsA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EfKYfdhNhJ:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYp
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence