87b0e2da433221a3d72539f3addb1570c7651cd2f581a01ea1eceb4de5913d71 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f9042acdd3ea9fa83a330c7c17e51550N.exe
Size

64KB
Sample

240820-sbbhvascjr
MD5

f9042acdd3ea9fa83a330c7c17e51550
SHA1

3ef611dc0a7b2e6c7cd87abbcc8f75d8b95750ae
SHA256

87b0e2da433221a3d72539f3addb1570c7651cd2f581a01ea1eceb4de5913d71
SHA512

9cadb4eed848ff12e7fb4185cca0465bee982fd77f3de3ecb6f48e2e88d25a17fc9a1fe1f7576863114d75fae786740c13dccfd8733c864c30e0739972b40f78
SSDEEP

192:ObOzawOs81elJHsc45ecRZOgtShcWaOT2QLrCqwkY04/CFxyNhoy5tF:ObLwOs8AHsc4QMfwhKQLroS4/CFsrdF

Score

8^/10

discovery persistence

Malware Config

Targets

- Target
  
  f9042acdd3ea9fa83a330c7c17e51550N.exe
- Size
  
  64KB
- MD5
  
  f9042acdd3ea9fa83a330c7c17e51550
- SHA1
  
  3ef611dc0a7b2e6c7cd87abbcc8f75d8b95750ae
- SHA256
  
  87b0e2da433221a3d72539f3addb1570c7651cd2f581a01ea1eceb4de5913d71
- SHA512
  
  9cadb4eed848ff12e7fb4185cca0465bee982fd77f3de3ecb6f48e2e88d25a17fc9a1fe1f7576863114d75fae786740c13dccfd8733c864c30e0739972b40f78
- SSDEEP
  
  192:ObOzawOs81elJHsc45ecRZOgtShcWaOT2QLrCqwkY04/CFxyNhoy5tF:ObLwOs8AHsc4QMfwhKQLroS4/CFsrdF
Score

8^/10

discovery persistence
- Boot or Logon Autostart Execution: Active Setup
  Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
  persistence
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Active Setup

Privilege Escalation

Boot or Logon Autostart Execution

Active Setup

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence