d3deaa994e28b285e3abe47c3bfe2c03f1f73020c93b3e6d4ec4e3ef4991301b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5ae8a9f2d82cb0098595bcd9f8d97710N.exe
Size

45KB
Sample

240906-c8t4fssdng
MD5

5ae8a9f2d82cb0098595bcd9f8d97710
SHA1

28c27d4ca487be3fb69ca0d80a7b84fc13b83885
SHA256

d3deaa994e28b285e3abe47c3bfe2c03f1f73020c93b3e6d4ec4e3ef4991301b
SHA512

c0ecbfc72d1985fec3693467899ed5faa9963e9cc8f450cb8c22e5ba18767ce3b155112ce784e9fb8b0430caac48b8655fbeee7f3278b8343239ff6774c678f6
SSDEEP

768:DqPJtsA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EfKYfdhNhk:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYE

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  5ae8a9f2d82cb0098595bcd9f8d97710N.exe
- Size
  
  45KB
- MD5
  
  5ae8a9f2d82cb0098595bcd9f8d97710
- SHA1
  
  28c27d4ca487be3fb69ca0d80a7b84fc13b83885
- SHA256
  
  d3deaa994e28b285e3abe47c3bfe2c03f1f73020c93b3e6d4ec4e3ef4991301b
- SHA512
  
  c0ecbfc72d1985fec3693467899ed5faa9963e9cc8f450cb8c22e5ba18767ce3b155112ce784e9fb8b0430caac48b8655fbeee7f3278b8343239ff6774c678f6
- SSDEEP
  
  768:DqPJtsA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EfKYfdhNhk:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYE
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence