6856e5eb63d33106818e31c73d24a242e98dc013881ec391b4ab27c6d2969c2d | Triage

Sharing

General

Target

dcefd1d995b3009e63ef9777c6cce430N.exe
Size

62KB
Sample

240818-tnhclasane
MD5

dcefd1d995b3009e63ef9777c6cce430
SHA1

a968edd192a62cf4f44fac86a168d81ee015debe
SHA256

6856e5eb63d33106818e31c73d24a242e98dc013881ec391b4ab27c6d2969c2d
SHA512

2373cb373c54484d6014eee0964f40b3bcce6a4fbf0df24e1bec283623b8adf377013be9d8b82822e616c04e86033a1a6d62cd9ab533fc8afa453a1c5ab8bf2c
SSDEEP

1536:lAo0ej2d6rnJwwvlKlIUBP6vghzwYu7vih9GueIh9j2IoHAcBHUIF2kvEHrH1hy9:lAo1lOwvlKlXBP6vghzwYu7vih9GueIc

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  dcefd1d995b3009e63ef9777c6cce430N.exe
- Size
  
  62KB
- MD5
  
  dcefd1d995b3009e63ef9777c6cce430
- SHA1
  
  a968edd192a62cf4f44fac86a168d81ee015debe
- SHA256
  
  6856e5eb63d33106818e31c73d24a242e98dc013881ec391b4ab27c6d2969c2d
- SHA512
  
  2373cb373c54484d6014eee0964f40b3bcce6a4fbf0df24e1bec283623b8adf377013be9d8b82822e616c04e86033a1a6d62cd9ab533fc8afa453a1c5ab8bf2c
- SSDEEP
  
  1536:lAo0ej2d6rnJwwvlKlIUBP6vghzwYu7vih9GueIh9j2IoHAcBHUIF2kvEHrH1hy9:lAo1lOwvlKlXBP6vghzwYu7vih9GueIc
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence