65128bf3d734f8020f4e952e1f039910cdf5a077fa5642f260b924dfaaf0bf05 | Triage

Sharing

General

Target

Vanguard-main.zip
Size

27KB
Sample

240911-r1yt1awfpe
MD5

983b2386b9993aab8896e8f658223d43
SHA1

b6c4fbbe13dfa915db2fc5e87183a566123a39f1
SHA256

65128bf3d734f8020f4e952e1f039910cdf5a077fa5642f260b924dfaaf0bf05
SHA512

35a731099fee7d81d38d829f24b52024b4f8d837b8c7ce322e6e1304bb82fcfaee9a08d3da4fb951ec3ad6835fca2d31cd30a251c25fa7b9ee330b364b0da988
SSDEEP

384:eXyoIRGi80AgZcHctXnTCF1SU5yh/FsR8HWgc4vWfNir81pcLk4QeIbR2YAHa:yqEi80NZwctDCaUdRE84+Ir1ctLAHa

Score

8^/10

execution persistence

Malware Config

Targets

- Target
  
  Vanguard-main/Compiled/AMD64/Install (Run As Admin).bat
- Size
  
  89B
- MD5
  
  7e05dcd9388b5b29b07150ba68c1612b
- SHA1
  
  4ac957c257948011f0af6ed93b250906b648f5d9
- SHA256
  
  86e95dabb321acbb6335f57656f14ca71ce9e47d03fe800f86d933db3f001d90
- SHA512
  
  eb322ced287d08cb31e18cc0669fff5c8dc44ee6bfc2d1fed55432b0fc66350217b72e0ac4a3cf2668638e9a662b08028a037f98e1e047b72ac991df375e515a
Score

8^/10

execution persistence
- Creates new service(s)
  persistence execution
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

System Services

Service Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

executionpersistence