d495be313a68aa56df6dfd2baa97178f26f58863771d7657ce10338720237d80 | Triage

Sharing

General

Target

d495be313a68aa56df6dfd2baa97178f26f58863771d7657ce10338720237d80
Size

45KB
Sample

240808-ebdrbaygmk
MD5

cf3ee43f4c40a32287cc420db9e97ebb
SHA1

8ad966c80fe493c5e9d45d1f99e75d0117224510
SHA256

d495be313a68aa56df6dfd2baa97178f26f58863771d7657ce10338720237d80
SHA512

657d3a5cd217c846505bf9b3e8e62163e9f1713f14ffbd83852db89489310513d024ea3651110ee65b7db03fae346d1778aa88ba2cbb46689447cab8172b3598
SSDEEP

768:DqPJtsA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EfKYfdhNh5:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYZ

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  d495be313a68aa56df6dfd2baa97178f26f58863771d7657ce10338720237d80
- Size
  
  45KB
- MD5
  
  cf3ee43f4c40a32287cc420db9e97ebb
- SHA1
  
  8ad966c80fe493c5e9d45d1f99e75d0117224510
- SHA256
  
  d495be313a68aa56df6dfd2baa97178f26f58863771d7657ce10338720237d80
- SHA512
  
  657d3a5cd217c846505bf9b3e8e62163e9f1713f14ffbd83852db89489310513d024ea3651110ee65b7db03fae346d1778aa88ba2cbb46689447cab8172b3598
- SSDEEP
  
  768:DqPJtsA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EfKYfdhNh5:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYZ
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence