c2e6bba0e03909b106d8e934fd01f5f2da51c139216f09d2feecdcd68c948e89 | Triage

Sharing

General

Target

6e58f01b8c6f9c74156bd4a3c1a4d840N.exe
Size

89KB
Sample

240906-b4cg6szdkf
MD5

6e58f01b8c6f9c74156bd4a3c1a4d840
SHA1

a2127dc680db9aaa4420d813d12b402ee0729ab2
SHA256

c2e6bba0e03909b106d8e934fd01f5f2da51c139216f09d2feecdcd68c948e89
SHA512

e43414a7c9cd3b0b1d4bf54e94238ec4caa7b25bb58c5dbd9040fc0d06a28cb2e80c2c00669429cf55b2b5b1786c7deb3d6ecc7cf077f456a014ec25dd9977c0
SSDEEP

768:Qvw9816vhKQLroh4/wQRNrfrunMxVFA3b7glL:YEGh0ohl2unMxVS3Hg9

Score

8^/10

discovery persistence

Malware Config

Targets

- Target
  
  6e58f01b8c6f9c74156bd4a3c1a4d840N.exe
- Size
  
  89KB
- MD5
  
  6e58f01b8c6f9c74156bd4a3c1a4d840
- SHA1
  
  a2127dc680db9aaa4420d813d12b402ee0729ab2
- SHA256
  
  c2e6bba0e03909b106d8e934fd01f5f2da51c139216f09d2feecdcd68c948e89
- SHA512
  
  e43414a7c9cd3b0b1d4bf54e94238ec4caa7b25bb58c5dbd9040fc0d06a28cb2e80c2c00669429cf55b2b5b1786c7deb3d6ecc7cf077f456a014ec25dd9977c0
- SSDEEP
  
  768:Qvw9816vhKQLroh4/wQRNrfrunMxVFA3b7glL:YEGh0ohl2unMxVS3Hg9
Score

8^/10

discovery persistence
- Boot or Logon Autostart Execution: Active Setup
  Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
  persistence
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Active Setup

Privilege Escalation

Boot or Logon Autostart Execution

Active Setup

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence