3dd8aad57601faf68d9a3b2bdfc457a0a21eb12b074aec499e343c65022e1f85 | Triage

Sharing

General

Target

18a25ed40c9771fc673a42fa4bb6b6f0N
Size

75KB
Sample

240908-d1qazatbmp
MD5

18a25ed40c9771fc673a42fa4bb6b6f0
SHA1

b332c616eed6c3a5d9a40ba11949d1c9107ea72a
SHA256

3dd8aad57601faf68d9a3b2bdfc457a0a21eb12b074aec499e343c65022e1f85
SHA512

de31ab23a37ab60c63a0dae5241b73aa17a357262b7cac5e5f2d4990bb6b3a1f09f2078f5fffdfb7a4f226c21ba5a22981046c39fa5ba60a942d30ebb854fe27
SSDEEP

1536:86RAo0ej2d6rnJwwvlNlIUBvsI7hrhEh9cpDN/qhAvP3OChhW4dI0h4HCIzhUvTm:xAo1lOwvlNlXBvsI7hrhEh9cpDN/qhA0

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  18a25ed40c9771fc673a42fa4bb6b6f0N
- Size
  
  75KB
- MD5
  
  18a25ed40c9771fc673a42fa4bb6b6f0
- SHA1
  
  b332c616eed6c3a5d9a40ba11949d1c9107ea72a
- SHA256
  
  3dd8aad57601faf68d9a3b2bdfc457a0a21eb12b074aec499e343c65022e1f85
- SHA512
  
  de31ab23a37ab60c63a0dae5241b73aa17a357262b7cac5e5f2d4990bb6b3a1f09f2078f5fffdfb7a4f226c21ba5a22981046c39fa5ba60a942d30ebb854fe27
- SSDEEP
  
  1536:86RAo0ej2d6rnJwwvlNlIUBvsI7hrhEh9cpDN/qhAvP3OChhW4dI0h4HCIzhUvTm:xAo1lOwvlNlXBvsI7hrhEh9cpDN/qhA0
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence