8ceac5ad8c79013a988059b461f227d937f51d48c3956965f2b0837828fd5e43 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8ceac5ad8c79013a988059b461f227d937f51d48c3956965f2b0837828fd5e43
Size

90KB
Sample

240818-3ahwmszhle
MD5

9ea33e1a12daa3b4bd2b3fdc4a1bd724
SHA1

2c69ef11400df584d2dc0ac72249ecaf231182d0
SHA256

8ceac5ad8c79013a988059b461f227d937f51d48c3956965f2b0837828fd5e43
SHA512

74c29941a030805730a77025e92776c927a9a3c4dba082159101af92ab639a82c5ce31955853469632dccbbcb26806335b674e66c678a178e821ecec6e07e41d
SSDEEP

768:5vw9816thKQLroP4/wQkNrfrunMxVFA3bA:lEG/0oPlbunMxVS3c

Score

8^/10

discovery persistence

Malware Config

Targets

- Target
  
  8ceac5ad8c79013a988059b461f227d937f51d48c3956965f2b0837828fd5e43
- Size
  
  90KB
- MD5
  
  9ea33e1a12daa3b4bd2b3fdc4a1bd724
- SHA1
  
  2c69ef11400df584d2dc0ac72249ecaf231182d0
- SHA256
  
  8ceac5ad8c79013a988059b461f227d937f51d48c3956965f2b0837828fd5e43
- SHA512
  
  74c29941a030805730a77025e92776c927a9a3c4dba082159101af92ab639a82c5ce31955853469632dccbbcb26806335b674e66c678a178e821ecec6e07e41d
- SSDEEP
  
  768:5vw9816thKQLroP4/wQkNrfrunMxVFA3bA:lEG/0oPlbunMxVS3c
Score

8^/10

discovery persistence
- Boot or Logon Autostart Execution: Active Setup
  Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
  persistence
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Active Setup

Privilege Escalation

Boot or Logon Autostart Execution

Active Setup

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence