626576fa306d08be152d10d111ae4d0d2b00f3fd58e106c3410a0b7b45140192 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f67d4c677b06ee2cc864d3b7b85b6090N
Size

88KB
Sample

240909-xy7xsaxbre
MD5

f67d4c677b06ee2cc864d3b7b85b6090
SHA1

3e58889e3c6b13d14c9ec9711bf66885ea8b6b45
SHA256

626576fa306d08be152d10d111ae4d0d2b00f3fd58e106c3410a0b7b45140192
SHA512

6fa8b5c086f97c192ed227083491af00af2f5619f2d8a23ab27edcde1d8827d71d2a3081c99c886acbdd8638f0da06b0d77204a053b8aca1b861d1b8dc7cc576
SSDEEP

768:5vw9816thKQLroJ4/wQkNrfrunMxVFA3V:lEG/0oJlbunMxVS3V

Score

8^/10

discovery persistence

Malware Config

Targets

- Target
  
  f67d4c677b06ee2cc864d3b7b85b6090N
- Size
  
  88KB
- MD5
  
  f67d4c677b06ee2cc864d3b7b85b6090
- SHA1
  
  3e58889e3c6b13d14c9ec9711bf66885ea8b6b45
- SHA256
  
  626576fa306d08be152d10d111ae4d0d2b00f3fd58e106c3410a0b7b45140192
- SHA512
  
  6fa8b5c086f97c192ed227083491af00af2f5619f2d8a23ab27edcde1d8827d71d2a3081c99c886acbdd8638f0da06b0d77204a053b8aca1b861d1b8dc7cc576
- SSDEEP
  
  768:5vw9816thKQLroJ4/wQkNrfrunMxVFA3V:lEG/0oJlbunMxVS3V
Score

8^/10

discovery persistence
- Boot or Logon Autostart Execution: Active Setup
  Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
  persistence
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Active Setup

Privilege Escalation

Boot or Logon Autostart Execution

Active Setup

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence