9c71d39d4bbdbdce18e15983f0ea9211ed5d5006bb4d97b707b5987964ab4f8a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9c71d39d4bbdbdce18e15983f0ea9211ed5d5006bb4d97b707b5987964ab4f8a
Size

40KB
Sample

240806-at6slatcrq
MD5

90b32dac4d3d70e9d5c50fd9472ac537
SHA1

95dff6dbf0a0851ae3552b9b8899a275189d33cf
SHA256

9c71d39d4bbdbdce18e15983f0ea9211ed5d5006bb4d97b707b5987964ab4f8a
SHA512

0561d7ee80ccd4c3ff226ce4692580a0a373504717481601a4768ee3d356f0264e95371ce43b9bfaea2223560a383fa6db05c014be9faae1393c5fbdc226d764
SSDEEP

768:DqPJtsA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EfKYfdhNhE:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYk

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  9c71d39d4bbdbdce18e15983f0ea9211ed5d5006bb4d97b707b5987964ab4f8a
- Size
  
  40KB
- MD5
  
  90b32dac4d3d70e9d5c50fd9472ac537
- SHA1
  
  95dff6dbf0a0851ae3552b9b8899a275189d33cf
- SHA256
  
  9c71d39d4bbdbdce18e15983f0ea9211ed5d5006bb4d97b707b5987964ab4f8a
- SHA512
  
  0561d7ee80ccd4c3ff226ce4692580a0a373504717481601a4768ee3d356f0264e95371ce43b9bfaea2223560a383fa6db05c014be9faae1393c5fbdc226d764
- SSDEEP
  
  768:DqPJtsA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EfKYfdhNhE:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYk
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence