73b2403811328f02e8def4b26503ead688e35e48e2996cb66bfb993d617b01ae | Triage

Sharing

Copy URL Twitter E-mail

General

Target

73b2403811328f02e8def4b26503ead688e35e48e2996cb66bfb993d617b01ae.exe
Size

56KB
Sample

240908-dmfjlssblp
MD5

6b4958e7f5243c224f4d0ee94452ed40
SHA1

3c7d735323a38fbbb20fecfd735eb6c2ac098df3
SHA256

73b2403811328f02e8def4b26503ead688e35e48e2996cb66bfb993d617b01ae
SHA512

b457fe1e3e6e00ed8fe575d1da5c1210d2b11f9e90a1f027934d418880bb2b593935a02594b20233815ea23ffa2bd725655a891ceee71f5f5a51fc0a493e8916
SSDEEP

1536:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYVFl2g5u58dO0xXHQEyYfdhNhFO5h3xhIq:+MA6C1VqaqhtgVRNToV7TtRu8rM0wYVU

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  73b2403811328f02e8def4b26503ead688e35e48e2996cb66bfb993d617b01ae.exe
- Size
  
  56KB
- MD5
  
  6b4958e7f5243c224f4d0ee94452ed40
- SHA1
  
  3c7d735323a38fbbb20fecfd735eb6c2ac098df3
- SHA256
  
  73b2403811328f02e8def4b26503ead688e35e48e2996cb66bfb993d617b01ae
- SHA512
  
  b457fe1e3e6e00ed8fe575d1da5c1210d2b11f9e90a1f027934d418880bb2b593935a02594b20233815ea23ffa2bd725655a891ceee71f5f5a51fc0a493e8916
- SSDEEP
  
  1536:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYVFl2g5u58dO0xXHQEyYfdhNhFO5h3xhIq:+MA6C1VqaqhtgVRNToV7TtRu8rM0wYVU
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence