241a202ace5cd4d38bba7f927ae54252cc60287f8f95fb6dc5ced1bfec4494ea | Triage

Sharing

General

Target

bfabf8fa17ca5a4e3346959b69b9c320N.exe
Size

42KB
Sample

240824-r57byavfkg
MD5

bfabf8fa17ca5a4e3346959b69b9c320
SHA1

b15bc8a2d732de8ca4c7970b0859fd56a791d50e
SHA256

241a202ace5cd4d38bba7f927ae54252cc60287f8f95fb6dc5ced1bfec4494ea
SHA512

b5a1deb0f87a1b68f7630342df2cf80d4127f7a9e496e08a9230a954f63bb6bdee6d8e401fe1741b5859f0e33211e2239f724281c1bb9c422abf61e3eed55186
SSDEEP

768:DqPJtsA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EfKYfdhNh7:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYb

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  bfabf8fa17ca5a4e3346959b69b9c320N.exe
- Size
  
  42KB
- MD5
  
  bfabf8fa17ca5a4e3346959b69b9c320
- SHA1
  
  b15bc8a2d732de8ca4c7970b0859fd56a791d50e
- SHA256
  
  241a202ace5cd4d38bba7f927ae54252cc60287f8f95fb6dc5ced1bfec4494ea
- SHA512
  
  b5a1deb0f87a1b68f7630342df2cf80d4127f7a9e496e08a9230a954f63bb6bdee6d8e401fe1741b5859f0e33211e2239f724281c1bb9c422abf61e3eed55186
- SSDEEP
  
  768:DqPJtsA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EfKYfdhNh7:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYb
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence