446d9c5b3f43bae62a764e53cd0caaa150780d50b71994b603d865e6f48874f1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

446d9c5b3f43bae62a764e53cd0caaa150780d50b71994b603d865e6f48874f1
Size

46KB
Sample

240907-zxzwwsverj
MD5

3ed540b5a2eef653ad80c12742d26571
SHA1

4b294116a2e3b0c334772b3be515ea02f45a087e
SHA256

446d9c5b3f43bae62a764e53cd0caaa150780d50b71994b603d865e6f48874f1
SHA512

a37afd84421d83dd450be656e3a7e233f4f7375e0a7a278eb73e59de9ca8369cdfa2af6590302496699846b5cec227fb3a71127a9d1f0e6a1fb58e6e9127a812
SSDEEP

768:DqPJtsA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EfKYfdhNhH:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYn

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  446d9c5b3f43bae62a764e53cd0caaa150780d50b71994b603d865e6f48874f1
- Size
  
  46KB
- MD5
  
  3ed540b5a2eef653ad80c12742d26571
- SHA1
  
  4b294116a2e3b0c334772b3be515ea02f45a087e
- SHA256
  
  446d9c5b3f43bae62a764e53cd0caaa150780d50b71994b603d865e6f48874f1
- SHA512
  
  a37afd84421d83dd450be656e3a7e233f4f7375e0a7a278eb73e59de9ca8369cdfa2af6590302496699846b5cec227fb3a71127a9d1f0e6a1fb58e6e9127a812
- SSDEEP
  
  768:DqPJtsA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EfKYfdhNhH:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYn
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence