70b0a2e8c19e573ee6baac4cd49de62798ac7195179b3b3ee38d87949ec7912b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

70b0a2e8c19e573ee6baac4cd49de62798ac7195179b3b3ee38d87949ec7912b
Size

90KB
Sample

240828-28v37a1glb
MD5

99cf1c2b45399f13d9887685cc5135d1
SHA1

e1d8bed90aaafaa9ff9024b02041b2d85b982adc
SHA256

70b0a2e8c19e573ee6baac4cd49de62798ac7195179b3b3ee38d87949ec7912b
SHA512

8cfb2ced2be002cf18d67070340b7a94dd295d17e12c8aab65cd7486620ae1aeb428d5626da015638187372dccdb351fdd3efc40d8af8db5490077799a78bf9d
SSDEEP

768:Qvw9816vhKQLrov4/wQRNrfrunMxVFA3b7glws:YEGh0ovl2unMxVS3Hgz

Score

8^/10

discovery persistence

Malware Config

Targets

- Target
  
  70b0a2e8c19e573ee6baac4cd49de62798ac7195179b3b3ee38d87949ec7912b
- Size
  
  90KB
- MD5
  
  99cf1c2b45399f13d9887685cc5135d1
- SHA1
  
  e1d8bed90aaafaa9ff9024b02041b2d85b982adc
- SHA256
  
  70b0a2e8c19e573ee6baac4cd49de62798ac7195179b3b3ee38d87949ec7912b
- SHA512
  
  8cfb2ced2be002cf18d67070340b7a94dd295d17e12c8aab65cd7486620ae1aeb428d5626da015638187372dccdb351fdd3efc40d8af8db5490077799a78bf9d
- SSDEEP
  
  768:Qvw9816vhKQLrov4/wQRNrfrunMxVFA3b7glws:YEGh0ovl2unMxVS3Hgz
Score

8^/10

discovery persistence
- Boot or Logon Autostart Execution: Active Setup
  Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
  persistence
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Active Setup

Privilege Escalation

Boot or Logon Autostart Execution

Active Setup

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence