e8cae9a8e48c68ff2712602a4e08fd2a4215f7802f42926ddc6332994f439080 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e8cae9a8e48c68ff2712602a4e08fd2a4215f7802f42926ddc6332994f439080
Size

51KB
Sample

240811-d8y8vatcqj
MD5

49abc6e46a36b3e256daf2eb992ffd6f
SHA1

e0efdde29aa61ca31489469247dc12c7f3e66c33
SHA256

e8cae9a8e48c68ff2712602a4e08fd2a4215f7802f42926ddc6332994f439080
SHA512

f506cdd85aad741151fe6790b1747f1aed39871c0e1a37475203bf57b24a3f5f1ab0039574dcd30611da8068911db85dfa33893ff97f28863e4bf2e592f77f64
SSDEEP

1536:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYVFl2g5u58dO0xXHQEyYfdhNhFO5h3xhIh:+MA6C1VqaqhtgVRNToV7TtRu8rM0wYVX

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  e8cae9a8e48c68ff2712602a4e08fd2a4215f7802f42926ddc6332994f439080
- Size
  
  51KB
- MD5
  
  49abc6e46a36b3e256daf2eb992ffd6f
- SHA1
  
  e0efdde29aa61ca31489469247dc12c7f3e66c33
- SHA256
  
  e8cae9a8e48c68ff2712602a4e08fd2a4215f7802f42926ddc6332994f439080
- SHA512
  
  f506cdd85aad741151fe6790b1747f1aed39871c0e1a37475203bf57b24a3f5f1ab0039574dcd30611da8068911db85dfa33893ff97f28863e4bf2e592f77f64
- SSDEEP
  
  1536:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYVFl2g5u58dO0xXHQEyYfdhNhFO5h3xhIh:+MA6C1VqaqhtgVRNToV7TtRu8rM0wYVX
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence