b228b0e2dd5cb39cb9ad3afefb074707a195a933bd6c93bcd2436a984a65736a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cefa661b9aad627f7534212da0e11490N.exe
Size

121KB
Sample

240821-az3ccsvfrq
MD5

cefa661b9aad627f7534212da0e11490
SHA1

adf699b9919c1630caa9eb9430a4feaed76a1828
SHA256

b228b0e2dd5cb39cb9ad3afefb074707a195a933bd6c93bcd2436a984a65736a
SHA512

a9616601076aa760a9b3c06f18ad913f6c0412a07722e039b51aff2a636b2a510241a9b0a050f4e0855141a7c789da36a3e1b93acd0468647689ec9131ed6858
SSDEEP

1536:F6RAo0Yj2d6rnJk4IUFdzzVcPhhZEiShvhFMpiI:UAoblm4XFdzzVcPhhZEiShvhFMpiI

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  cefa661b9aad627f7534212da0e11490N.exe
- Size
  
  121KB
- MD5
  
  cefa661b9aad627f7534212da0e11490
- SHA1
  
  adf699b9919c1630caa9eb9430a4feaed76a1828
- SHA256
  
  b228b0e2dd5cb39cb9ad3afefb074707a195a933bd6c93bcd2436a984a65736a
- SHA512
  
  a9616601076aa760a9b3c06f18ad913f6c0412a07722e039b51aff2a636b2a510241a9b0a050f4e0855141a7c789da36a3e1b93acd0468647689ec9131ed6858
- SSDEEP
  
  1536:F6RAo0Yj2d6rnJk4IUFdzzVcPhhZEiShvhFMpiI:UAoblm4XFdzzVcPhhZEiShvhFMpiI
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence