0b29701c2ea7327a962c812ba8ae3315e379e3e7d77588eb9b3aa9ce9eea578b | Triage

Sharing

General

Target

858dfc7de9aae0876a45455cb317f960N.exe
Size

468KB
Sample

240905-pymb3s1cqr
MD5

858dfc7de9aae0876a45455cb317f960
SHA1

078a987558ea9f0342b2b4d94acd6ae655c4f4f6
SHA256

0b29701c2ea7327a962c812ba8ae3315e379e3e7d77588eb9b3aa9ce9eea578b
SHA512

1538faaee6122d93f037de8e1208ad0d93b916fb069da95c0785426608b94b29f25169926b46be056d848dd8ab2aa1f0008e0f2259e225cfc1feba2d4562b2a1
SSDEEP

3072:d/KCogKxjQ8UFbYbP+eyTf8/EpBZXVpXjmHxXlFyk0w+FdtN78lh:d/3otdUFwPByTfZz2ak0H3tN7

Score

8^/10

discovery persistence

Malware Config

Targets

- Target
  
  858dfc7de9aae0876a45455cb317f960N.exe
- Size
  
  468KB
- MD5
  
  858dfc7de9aae0876a45455cb317f960
- SHA1
  
  078a987558ea9f0342b2b4d94acd6ae655c4f4f6
- SHA256
  
  0b29701c2ea7327a962c812ba8ae3315e379e3e7d77588eb9b3aa9ce9eea578b
- SHA512
  
  1538faaee6122d93f037de8e1208ad0d93b916fb069da95c0785426608b94b29f25169926b46be056d848dd8ab2aa1f0008e0f2259e225cfc1feba2d4562b2a1
- SSDEEP
  
  3072:d/KCogKxjQ8UFbYbP+eyTf8/EpBZXVpXjmHxXlFyk0w+FdtN78lh:d/3otdUFwPByTfZz2ak0H3tN7
Score

8^/10

discovery persistence
- Boot or Logon Autostart Execution: Active Setup
  Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
  persistence
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Active Setup

Privilege Escalation

Boot or Logon Autostart Execution

Active Setup

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

discoverypersistence