9b24ccc6f6d8b85e7069c18d7adbd885cbf587d1824b8924d7cec6505aa50d24 | Triage

Sharing

General

Target

d18fc3efdeaa28cd76f27b805158df40N.exe
Size

45KB
Sample

240819-bb2llaverd
MD5

d18fc3efdeaa28cd76f27b805158df40
SHA1

81a408ae6afba4aed8c68e5c85f8f8a6d163418f
SHA256

9b24ccc6f6d8b85e7069c18d7adbd885cbf587d1824b8924d7cec6505aa50d24
SHA512

1b70649808eeda13b10a883e65bf0110549127039c23e98d7c561c04d51107d1cfdf3bb8f3b154380fc1c61649b4950789fe39ffcc777e1362cd657cada97953
SSDEEP

768:DqPJtsA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EfKYfdhNhy:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYS

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  d18fc3efdeaa28cd76f27b805158df40N.exe
- Size
  
  45KB
- MD5
  
  d18fc3efdeaa28cd76f27b805158df40
- SHA1
  
  81a408ae6afba4aed8c68e5c85f8f8a6d163418f
- SHA256
  
  9b24ccc6f6d8b85e7069c18d7adbd885cbf587d1824b8924d7cec6505aa50d24
- SHA512
  
  1b70649808eeda13b10a883e65bf0110549127039c23e98d7c561c04d51107d1cfdf3bb8f3b154380fc1c61649b4950789fe39ffcc777e1362cd657cada97953
- SSDEEP
  
  768:DqPJtsA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EfKYfdhNhy:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYS
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence