363daf6f7d0a0a261a08bb25276451d6ddee891f7271ae2542b9e463eabd6998 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6ae06ec9760b566de6a89732dc592b80N.exe
Size

62KB
Sample

240821-nh1n4awanb
MD5

6ae06ec9760b566de6a89732dc592b80
SHA1

063d839fad1dda786a630a64e62d4d35aef09cdf
SHA256

363daf6f7d0a0a261a08bb25276451d6ddee891f7271ae2542b9e463eabd6998
SHA512

78102ed9e7626e0cbd93f81c230f501ea996eec627519d5e99aa1407a34da97dba318d57513012621477f7dff2de4ecf578f112595eac96f37c2b621452a57b3
SSDEEP

1536:NAo0Tj2d6rnJwwvl4ulkP6vghzwYu7vih9GueIh9j2IoHAjUvJQ/johleHhvGh42:NAoglOwvl4ulkP6vghzwYu7vih9GueI2

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  6ae06ec9760b566de6a89732dc592b80N.exe
- Size
  
  62KB
- MD5
  
  6ae06ec9760b566de6a89732dc592b80
- SHA1
  
  063d839fad1dda786a630a64e62d4d35aef09cdf
- SHA256
  
  363daf6f7d0a0a261a08bb25276451d6ddee891f7271ae2542b9e463eabd6998
- SHA512
  
  78102ed9e7626e0cbd93f81c230f501ea996eec627519d5e99aa1407a34da97dba318d57513012621477f7dff2de4ecf578f112595eac96f37c2b621452a57b3
- SSDEEP
  
  1536:NAo0Tj2d6rnJwwvl4ulkP6vghzwYu7vih9GueIh9j2IoHAjUvJQ/johleHhvGh42:NAoglOwvl4ulkP6vghzwYu7vih9GueI2
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence