9999e4aedaca0a674d656ba1ab1feca8a079a3819f64610a0e2ab6dccf29fd7a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9999e4aedaca0a674d656ba1ab1feca8a079a3819f64610a0e2ab6dccf29fd7a
Size

44KB
Sample

240818-ct965azfra
MD5

fdc1d19ed08dcfe2478911826f86e72b
SHA1

1f681c1609aff0a64df46c8b11464da39353d98a
SHA256

9999e4aedaca0a674d656ba1ab1feca8a079a3819f64610a0e2ab6dccf29fd7a
SHA512

d4ae7c1d99928d817b862fa401c4e71a80daef48d30b97aaaa46288a663ce5984df73d48145314dfc3372693de02fab7dee716eb43200f8494dbf794dcaa1843
SSDEEP

768:DqPJtsA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EfKYfdhNhi:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYC

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  9999e4aedaca0a674d656ba1ab1feca8a079a3819f64610a0e2ab6dccf29fd7a
- Size
  
  44KB
- MD5
  
  fdc1d19ed08dcfe2478911826f86e72b
- SHA1
  
  1f681c1609aff0a64df46c8b11464da39353d98a
- SHA256
  
  9999e4aedaca0a674d656ba1ab1feca8a079a3819f64610a0e2ab6dccf29fd7a
- SHA512
  
  d4ae7c1d99928d817b862fa401c4e71a80daef48d30b97aaaa46288a663ce5984df73d48145314dfc3372693de02fab7dee716eb43200f8494dbf794dcaa1843
- SSDEEP
  
  768:DqPJtsA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EfKYfdhNhi:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYC
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence