10bc14de17c5477a463b946702ee72d2e8d1f70fb5186ab6e6c32a4bb34b0582 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

10bc14de17c5477a463b946702ee72d2e8d1f70fb5186ab6e6c32a4bb34b0582
Size

95KB
Sample

240909-xfv59swbpc
MD5

92f78ee68b2b455906e47c29b9babdcd
SHA1

5f9000bbd9bd927825fa5f0a856cebbaeb2d33e0
SHA256

10bc14de17c5477a463b946702ee72d2e8d1f70fb5186ab6e6c32a4bb34b0582
SHA512

f0c624b7fb8ab089e22d7ec6013f35c938366bfe459c9c954120531d7fded161a07f5f694990b698ad970b864d55aa5919ab2dd112610e2c4c6ce80cdbbe5d41
SSDEEP

1536:/Ao0+j2d6rnJqlIUSJn3m2GnNCyuaMeFg8kVQ+SvMupWsZZZNF01Lryhv1g1s1E/:/AoVl4lXin3m2GnNCyuaMeFg8kVQ+Sv

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  10bc14de17c5477a463b946702ee72d2e8d1f70fb5186ab6e6c32a4bb34b0582
- Size
  
  95KB
- MD5
  
  92f78ee68b2b455906e47c29b9babdcd
- SHA1
  
  5f9000bbd9bd927825fa5f0a856cebbaeb2d33e0
- SHA256
  
  10bc14de17c5477a463b946702ee72d2e8d1f70fb5186ab6e6c32a4bb34b0582
- SHA512
  
  f0c624b7fb8ab089e22d7ec6013f35c938366bfe459c9c954120531d7fded161a07f5f694990b698ad970b864d55aa5919ab2dd112610e2c4c6ce80cdbbe5d41
- SSDEEP
  
  1536:/Ao0+j2d6rnJqlIUSJn3m2GnNCyuaMeFg8kVQ+SvMupWsZZZNF01Lryhv1g1s1E/:/AoVl4lXin3m2GnNCyuaMeFg8kVQ+Sv
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence