6fbbbf9a98d64b19e13e80a54d5761fec2e4896b5c59e468b02fa138adba6421 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f347b631e7d965194179578665ad5b00N.exe
Size

89KB
Sample

240905-lv22ksyema
MD5

f347b631e7d965194179578665ad5b00
SHA1

edeef5f281b016729ac956bac90e2e33919dd739
SHA256

6fbbbf9a98d64b19e13e80a54d5761fec2e4896b5c59e468b02fa138adba6421
SHA512

3b5a1b078d1d1a40aaae59cc174ed731105db48e1ed1a39f9d644d04376ab96e64ae24611c10a5890e837c1e7885bc26b0d8e24004455fc7d2b69ab93e620484
SSDEEP

768:5vw9816thKQLrob4/wQkNrfrunMxVFA3k:lEG/0oblbunMxVS3k

Score

8^/10

discovery persistence

Malware Config

Targets

- Target
  
  f347b631e7d965194179578665ad5b00N.exe
- Size
  
  89KB
- MD5
  
  f347b631e7d965194179578665ad5b00
- SHA1
  
  edeef5f281b016729ac956bac90e2e33919dd739
- SHA256
  
  6fbbbf9a98d64b19e13e80a54d5761fec2e4896b5c59e468b02fa138adba6421
- SHA512
  
  3b5a1b078d1d1a40aaae59cc174ed731105db48e1ed1a39f9d644d04376ab96e64ae24611c10a5890e837c1e7885bc26b0d8e24004455fc7d2b69ab93e620484
- SSDEEP
  
  768:5vw9816thKQLrob4/wQkNrfrunMxVFA3k:lEG/0oblbunMxVS3k
Score

8^/10

discovery persistence
- Boot or Logon Autostart Execution: Active Setup
  Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
  persistence
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Active Setup

Privilege Escalation

Boot or Logon Autostart Execution

Active Setup

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence