a09139e95d865c2238954ab4c6cf98cdaa7f92dc2803148c33f06cf360c14e4f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a09139e95d865c2238954ab4c6cf98cdaa7f92dc2803148c33f06cf360c14e4f
Size

46KB
Sample

240812-av2v2awgpl
MD5

2f25d3e87d3dde1d2077093b4a9bed6c
SHA1

9ede663b732aa069ddc82ed97b219ddcb19135e1
SHA256

a09139e95d865c2238954ab4c6cf98cdaa7f92dc2803148c33f06cf360c14e4f
SHA512

62d05c13e729eb4122e5e6cf1cc46afc11e0f239846ae23b38fad4ea095f999c8ea689818049867054e74d964d95341123045ea4af7c01d943497fd24f0ffe5f
SSDEEP

768:DqPJtsA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EfKYfdhNhW:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wY2

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  a09139e95d865c2238954ab4c6cf98cdaa7f92dc2803148c33f06cf360c14e4f
- Size
  
  46KB
- MD5
  
  2f25d3e87d3dde1d2077093b4a9bed6c
- SHA1
  
  9ede663b732aa069ddc82ed97b219ddcb19135e1
- SHA256
  
  a09139e95d865c2238954ab4c6cf98cdaa7f92dc2803148c33f06cf360c14e4f
- SHA512
  
  62d05c13e729eb4122e5e6cf1cc46afc11e0f239846ae23b38fad4ea095f999c8ea689818049867054e74d964d95341123045ea4af7c01d943497fd24f0ffe5f
- SSDEEP
  
  768:DqPJtsA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EfKYfdhNhW:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wY2
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence