519251cd4fd2f91ef8f1d98da76425dca81d601a814593c598197c9ca2f720ed | Triage

Sharing

General

Target

519251cd4fd2f91ef8f1d98da76425dca81d601a814593c598197c9ca2f720ed
Size

471KB
Sample

240822-fwq3tazfje
MD5

91ef7dc50231192d66388332e7bfc0b4
SHA1

7b355ece7361f50e33bde4aaabb38ab1b5e48617
SHA256

519251cd4fd2f91ef8f1d98da76425dca81d601a814593c598197c9ca2f720ed
SHA512

35816f8e2aad11c6a8d9c518698bf9c5eb4eb276c9746d140def8b913103011315e765b50d7a8109620ecdb0e048049ad323252871387c8f19f4211fdbbcc187
SSDEEP

6144:m8r72zup5lG7M3rchatQNqznxrANmSkJy649lXeiCDTUe1UGV1ZLOxZFIhKBvwF:mAEM3r3drAN6y6glXelDOGTNOTqVF

Score

6^/10

discovery persistence

Malware Config

Targets

- Target
  
  Docusment/1/1.exe
- Size
  
  378KB
- MD5
  
  2df98c8120ba718a0bb30f6e16b30dbe
- SHA1
  
  9f293a5de204b05b2e2114bc662e6d51dc198071
- SHA256
  
  abcf2c8bab98cedb1bd973a0cefa747e6fe9d835248e4471f7cf9c26446abe6e
- SHA512
  
  cf5969519cf8d01fc33f7fcc7f73c50f79f16838a4d910ca3c23b65350e5c31df91d9a7a45b2935d60ec61108583b06bea3534c8750d4f8712216ed90fd987e1
- SSDEEP
  
  6144:yJSEaqLpUx+9rtlmKPeTyQ0Sl9xbAOtT9YoB4kPW7X:yJSEpUxsOHb3T34kPWD
Score

6^/10

discovery persistence
- Adds Run key to start application
  persistence
- Drops desktop.ini file(s)
behavioral1 behavioral2
- Target
  
  Docusment/1/libcef.dll
- Size
  
  130KB
- MD5
  
  c38f92b1484e0ffeb3c30402d7a6beac
- SHA1
  
  c3389f6e31a4ae5d9ba8c19251981942c69faea6
- SHA256
  
  b9d51c938e7ce79a577358534e3d628ed41288b4d469bb7c20837a54044fc1b6
- SHA512
  
  4ea0cf165630bbaa6c261f892216ab931bf8b67036d0547579e657d648ce48bfc4da30be3992053b20bd6a834e9a9b39b96eb9250427c12137c8cba8ada5dd5a
- SSDEEP
  
  3072:sXOtR9yxKjDcReJPAo5CgVq3000Oh73ygN+b/oGGbE:lfgxgcIVlZX00AA/oGGbE
Score

3^/10

discovery
behavioral3 behavioral4

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence

behavioral3

behavioral4