7e80f4c3de232199039b43990c9b4e67ba45017eabea3d799d000a1a624e5208 | Triage

Sharing

General

Target

63fd02fdf10254b3f8cf4048fe202220N.exe
Size

60KB
Sample

240805-h3gttszclq
MD5

63fd02fdf10254b3f8cf4048fe202220
SHA1

6f84b4e82557b9ae089b679cb8a8302dbaaae84f
SHA256

7e80f4c3de232199039b43990c9b4e67ba45017eabea3d799d000a1a624e5208
SHA512

c9a5d7aa6d13b04fcbe8b76729d01c0c4b35632afd5232bcfdb56176a8dc03c51940af1d14182b3a1fe42520be3900703dd5e03eff057e06e5bd01ef966309d6
SSDEEP

192:vbOzawOs81elJHsc45CcRZOgtShcWaOT2QLrCqw8Y04/CFxyNhoy5t:vbLwOs8AHsc4sMfwhKQLroK4/CFsrd

Score

8^/10

discovery persistence

Malware Config

Targets

- Target
  
  63fd02fdf10254b3f8cf4048fe202220N.exe
- Size
  
  60KB
- MD5
  
  63fd02fdf10254b3f8cf4048fe202220
- SHA1
  
  6f84b4e82557b9ae089b679cb8a8302dbaaae84f
- SHA256
  
  7e80f4c3de232199039b43990c9b4e67ba45017eabea3d799d000a1a624e5208
- SHA512
  
  c9a5d7aa6d13b04fcbe8b76729d01c0c4b35632afd5232bcfdb56176a8dc03c51940af1d14182b3a1fe42520be3900703dd5e03eff057e06e5bd01ef966309d6
- SSDEEP
  
  192:vbOzawOs81elJHsc45CcRZOgtShcWaOT2QLrCqw8Y04/CFxyNhoy5t:vbLwOs8AHsc4sMfwhKQLroK4/CFsrd
Score

8^/10

discovery persistence
- Boot or Logon Autostart Execution: Active Setup
  Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
  persistence
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Active Setup

Privilege Escalation

Boot or Logon Autostart Execution

Active Setup

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence