63a705d4e3dcd4e795215b0786e0b3525596bca0bd1dd861c3bc05757e5cf3df | Triage

Sharing

Copy URL Twitter E-mail

General

Target

af68eb6a5dbadd707368b73290f179f0N.exe
Size

46KB
Sample

240906-jedb6svajf
MD5

af68eb6a5dbadd707368b73290f179f0
SHA1

5ada1f7c91f561895b3fbf7810bc17446f6ed443
SHA256

63a705d4e3dcd4e795215b0786e0b3525596bca0bd1dd861c3bc05757e5cf3df
SHA512

a8916e98eb7ab5a5102520b5262a7b54ac863fc9f2453cc4ffe7e4d95115d5f79492f94a56adaf5d78043779c3bf23c313e132676b91c7abb20819b4b97e3252
SSDEEP

768:DqPJtsA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EfKYfdhNhd:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wY9

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  af68eb6a5dbadd707368b73290f179f0N.exe
- Size
  
  46KB
- MD5
  
  af68eb6a5dbadd707368b73290f179f0
- SHA1
  
  5ada1f7c91f561895b3fbf7810bc17446f6ed443
- SHA256
  
  63a705d4e3dcd4e795215b0786e0b3525596bca0bd1dd861c3bc05757e5cf3df
- SHA512
  
  a8916e98eb7ab5a5102520b5262a7b54ac863fc9f2453cc4ffe7e4d95115d5f79492f94a56adaf5d78043779c3bf23c313e132676b91c7abb20819b4b97e3252
- SSDEEP
  
  768:DqPJtsA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EfKYfdhNhd:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wY9
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence