c8911e229034edb96557d4cc3009d5b9ccfadff4080c04f3f1cf49919561d1da | Triage

Sharing

General

Target

f286418428ff4cdc71faf6538b918960N
Size

89KB
Sample

240911-q8w5pstfrk
MD5

f286418428ff4cdc71faf6538b918960
SHA1

0bb1972dc509db36c7dc286b08fed4dc28cab3b8
SHA256

c8911e229034edb96557d4cc3009d5b9ccfadff4080c04f3f1cf49919561d1da
SHA512

947e8eb2d47b357395f886d86af0987509e28eed6c680cf7329024f141980831c90271f781a3caba02612349f148ff0172929125e91997b62e33abfab87328ee
SSDEEP

768:Qvw9816vhKQLroH4/wQRNrfrunMxVFA3b7gl5:YEGh0oHl2unMxVS3HgX

Score

8^/10

discovery persistence

Malware Config

Targets

- Target
  
  f286418428ff4cdc71faf6538b918960N
- Size
  
  89KB
- MD5
  
  f286418428ff4cdc71faf6538b918960
- SHA1
  
  0bb1972dc509db36c7dc286b08fed4dc28cab3b8
- SHA256
  
  c8911e229034edb96557d4cc3009d5b9ccfadff4080c04f3f1cf49919561d1da
- SHA512
  
  947e8eb2d47b357395f886d86af0987509e28eed6c680cf7329024f141980831c90271f781a3caba02612349f148ff0172929125e91997b62e33abfab87328ee
- SSDEEP
  
  768:Qvw9816vhKQLroH4/wQRNrfrunMxVFA3b7gl5:YEGh0oHl2unMxVS3HgX
Score

8^/10

discovery persistence
- Boot or Logon Autostart Execution: Active Setup
  Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
  persistence
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Active Setup

Privilege Escalation

Boot or Logon Autostart Execution

Active Setup

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence