35d96966166314438c86c0a1b0879f8b172aaea734ea2e71a0d2d2a8546f2e87 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

35d96966166314438c86c0a1b0879f8b172aaea734ea2e71a0d2d2a8546f2e87
Size

44KB
Sample

240823-ydyn2ssepd
MD5

767df0b1652a79bc49cbeb4a17a12185
SHA1

ebc35f403ce66832121bec64924f9f945c4fcb02
SHA256

35d96966166314438c86c0a1b0879f8b172aaea734ea2e71a0d2d2a8546f2e87
SHA512

251cef240d46b9851ad145d5a7a3b48b2870ff6728da4db84c1bc367b095663b99c70ffebe8c9c8d92868fba959e4a73ed814dbe6ca557664c8d3a619535c3ba
SSDEEP

768:DqPJtsA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EfKYfdhNhq:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYK

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  35d96966166314438c86c0a1b0879f8b172aaea734ea2e71a0d2d2a8546f2e87
- Size
  
  44KB
- MD5
  
  767df0b1652a79bc49cbeb4a17a12185
- SHA1
  
  ebc35f403ce66832121bec64924f9f945c4fcb02
- SHA256
  
  35d96966166314438c86c0a1b0879f8b172aaea734ea2e71a0d2d2a8546f2e87
- SHA512
  
  251cef240d46b9851ad145d5a7a3b48b2870ff6728da4db84c1bc367b095663b99c70ffebe8c9c8d92868fba959e4a73ed814dbe6ca557664c8d3a619535c3ba
- SSDEEP
  
  768:DqPJtsA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EfKYfdhNhq:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYK
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence