953bea3f27dc3f4475c43a3a8106ed256f955a4493ba60f0f5d32fe4a87abc20 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2cd8dbe1ea00951ce3bd892d40768d40N.exe
Size

61KB
Sample

240817-frffhsydlb
MD5

2cd8dbe1ea00951ce3bd892d40768d40
SHA1

890b6f9272c603ac0ce7f968aab28468743bd5d2
SHA256

953bea3f27dc3f4475c43a3a8106ed256f955a4493ba60f0f5d32fe4a87abc20
SHA512

a7a8cf569baac90156d0d415f6858fca0cd0d423c46abf4e586f7d53095b914e1849b5aa9c2107062c481a0874e0bfa11d511f7df6113d856d12ca33ce378081
SSDEEP

1536:lAo0ej2d6rnJwwvlKlIUBP6vghzwYu7vih9GueIh9j2IoHAcBHUIFvSHbhqhJIFm:lAo1lOwvlKlXBP6vghzwYu7vih9GueIc

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  2cd8dbe1ea00951ce3bd892d40768d40N.exe
- Size
  
  61KB
- MD5
  
  2cd8dbe1ea00951ce3bd892d40768d40
- SHA1
  
  890b6f9272c603ac0ce7f968aab28468743bd5d2
- SHA256
  
  953bea3f27dc3f4475c43a3a8106ed256f955a4493ba60f0f5d32fe4a87abc20
- SHA512
  
  a7a8cf569baac90156d0d415f6858fca0cd0d423c46abf4e586f7d53095b914e1849b5aa9c2107062c481a0874e0bfa11d511f7df6113d856d12ca33ce378081
- SSDEEP
  
  1536:lAo0ej2d6rnJwwvlKlIUBP6vghzwYu7vih9GueIh9j2IoHAcBHUIFvSHbhqhJIFm:lAo1lOwvlKlXBP6vghzwYu7vih9GueIc
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence