58a540e5e4d585a8de8cc5f889e2ac8a27f69a47a7ddb9cf9a2c3c276e029315 | Triage

Sharing

General

Target

80da4c75b8b276e6d44b3d3cd9bc1200N.exe
Size

39KB
Sample

240807-hsrlaatgpj
MD5

80da4c75b8b276e6d44b3d3cd9bc1200
SHA1

a283e4eb5bcaca9b5c90b0df1f275305680435f8
SHA256

58a540e5e4d585a8de8cc5f889e2ac8a27f69a47a7ddb9cf9a2c3c276e029315
SHA512

8941cd1acc0dd74c0fd0c78a2ac3579e95781f713eed215f9dd6a6513c60f2e6bc6b4a06ca5eb5f535cc7f5d6887cff7b3df47ee36e05ba8caa3b2d76c6b7f1a
SSDEEP

768:DqPJtsA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EfKYfdhNhN:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYt

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  80da4c75b8b276e6d44b3d3cd9bc1200N.exe
- Size
  
  39KB
- MD5
  
  80da4c75b8b276e6d44b3d3cd9bc1200
- SHA1
  
  a283e4eb5bcaca9b5c90b0df1f275305680435f8
- SHA256
  
  58a540e5e4d585a8de8cc5f889e2ac8a27f69a47a7ddb9cf9a2c3c276e029315
- SHA512
  
  8941cd1acc0dd74c0fd0c78a2ac3579e95781f713eed215f9dd6a6513c60f2e6bc6b4a06ca5eb5f535cc7f5d6887cff7b3df47ee36e05ba8caa3b2d76c6b7f1a
- SSDEEP
  
  768:DqPJtsA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EfKYfdhNhN:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYt
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence