2cfafa32dca05de338813a6cd8ee34265e538559f68d107af41b1c0fbbc61812 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2cfafa32dca05de338813a6cd8ee34265e538559f68d107af41b1c0fbbc61812
Size

40KB
Sample

240805-yqbeaawhkp
MD5

1cbac0eda610abbbe44328e64b77dbd1
SHA1

26408572075d3631a096ababd76fcd26b7b46e58
SHA256

2cfafa32dca05de338813a6cd8ee34265e538559f68d107af41b1c0fbbc61812
SHA512

3997ff7a094f20a3e5109c12cf697113d4d901336567facae6b356b3d2fa7aa066e79fa9e62539f8b5ec7a631916de4290e8366c1b6e5cecb67ccdada2deb544
SSDEEP

768:DqPJtsA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EfKYfdhNhC:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYi

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  2cfafa32dca05de338813a6cd8ee34265e538559f68d107af41b1c0fbbc61812
- Size
  
  40KB
- MD5
  
  1cbac0eda610abbbe44328e64b77dbd1
- SHA1
  
  26408572075d3631a096ababd76fcd26b7b46e58
- SHA256
  
  2cfafa32dca05de338813a6cd8ee34265e538559f68d107af41b1c0fbbc61812
- SHA512
  
  3997ff7a094f20a3e5109c12cf697113d4d901336567facae6b356b3d2fa7aa066e79fa9e62539f8b5ec7a631916de4290e8366c1b6e5cecb67ccdada2deb544
- SSDEEP
  
  768:DqPJtsA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EfKYfdhNhC:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYi
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence