895e73ada2bbd57e122c9dffad787a84fddce5e4a132253f22c9c27cff3a96d4 | Triage

Sharing

General

Target

20b2db18fb06fba12487960d61359070N.exe
Size

91KB
Sample

240901-wlpp1axeqp
MD5

20b2db18fb06fba12487960d61359070
SHA1

e26f2a49f6975c727554a4be8256b86f0d6df859
SHA256

895e73ada2bbd57e122c9dffad787a84fddce5e4a132253f22c9c27cff3a96d4
SHA512

860be0f7c2f0c902721fc231234cadf17118ce2b04a5fce4aa9dab6f067cafea83e2f7d6b47e0592eac15f16d952c38347e89e7abb5fea73aa253b21c94107e6
SSDEEP

768:5vw9816uhKiro74/wQNNrfrunMxVFA3b7t:lEGkmo7lCunMxVS3Ht

Score

8^/10

discovery persistence

Malware Config

Targets

- Target
  
  20b2db18fb06fba12487960d61359070N.exe
- Size
  
  91KB
- MD5
  
  20b2db18fb06fba12487960d61359070
- SHA1
  
  e26f2a49f6975c727554a4be8256b86f0d6df859
- SHA256
  
  895e73ada2bbd57e122c9dffad787a84fddce5e4a132253f22c9c27cff3a96d4
- SHA512
  
  860be0f7c2f0c902721fc231234cadf17118ce2b04a5fce4aa9dab6f067cafea83e2f7d6b47e0592eac15f16d952c38347e89e7abb5fea73aa253b21c94107e6
- SSDEEP
  
  768:5vw9816uhKiro74/wQNNrfrunMxVFA3b7t:lEGkmo7lCunMxVS3Ht
Score

8^/10

discovery persistence
- Boot or Logon Autostart Execution: Active Setup
  Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
  persistence
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Active Setup

Privilege Escalation

Boot or Logon Autostart Execution

Active Setup

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence