edeacf14753468623bdd1650063022e4015e62013910e3508244dc2e132210ba | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0ec5fbb1a51bff2b49889fe92b23caa0N.exe
Size

74KB
Sample

240820-r6rb4ssajm
MD5

0ec5fbb1a51bff2b49889fe92b23caa0
SHA1

61ca290c8fc0bc1b61b557e0426eb2c3f7b2f824
SHA256

edeacf14753468623bdd1650063022e4015e62013910e3508244dc2e132210ba
SHA512

91b82ea28de917bd8bfaa5a65aafbdb49115709563b6a27e4b577fa7b686e7708db557c5d33b0ba588163759c8a34de8b88adb3490d320d9d2796a03398e4b41
SSDEEP

1536:86RAo0ej2d6rnJwwvlNlIUBvsI7hrhEh9cpDN/qhAvP3OChhW4dI0h4HCISGGHMW:xAo1lOwvlNlXBvsI7hrhEh9cpDN/qhAD

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  0ec5fbb1a51bff2b49889fe92b23caa0N.exe
- Size
  
  74KB
- MD5
  
  0ec5fbb1a51bff2b49889fe92b23caa0
- SHA1
  
  61ca290c8fc0bc1b61b557e0426eb2c3f7b2f824
- SHA256
  
  edeacf14753468623bdd1650063022e4015e62013910e3508244dc2e132210ba
- SHA512
  
  91b82ea28de917bd8bfaa5a65aafbdb49115709563b6a27e4b577fa7b686e7708db557c5d33b0ba588163759c8a34de8b88adb3490d320d9d2796a03398e4b41
- SSDEEP
  
  1536:86RAo0ej2d6rnJwwvlNlIUBvsI7hrhEh9cpDN/qhAvP3OChhW4dI0h4HCISGGHMW:xAo1lOwvlNlXBvsI7hrhEh9cpDN/qhAD
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence