9caa1cdcd41a24eeea2abd80e356a2f160ff8dd138df0c7494784a6a38fb0054 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

21bfb71331b476e357363a791c3c8450N
Size

47KB
Sample

240911-vl3fessbpp
MD5

21bfb71331b476e357363a791c3c8450
SHA1

fdb11bbefe70300b6f92477db331fd9a994ed0d4
SHA256

9caa1cdcd41a24eeea2abd80e356a2f160ff8dd138df0c7494784a6a38fb0054
SHA512

23ef4138656db6bfe34430a49b831ee4594b81a6772585d15bcd8b5a87c2749bdfba2137e7f08cbc5c03bfebfaf6bdf4797b5c21c1da4a110ac556af7885fffa
SSDEEP

768:DqPJtsA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EfKYfdhNh2:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYW

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  21bfb71331b476e357363a791c3c8450N
- Size
  
  47KB
- MD5
  
  21bfb71331b476e357363a791c3c8450
- SHA1
  
  fdb11bbefe70300b6f92477db331fd9a994ed0d4
- SHA256
  
  9caa1cdcd41a24eeea2abd80e356a2f160ff8dd138df0c7494784a6a38fb0054
- SHA512
  
  23ef4138656db6bfe34430a49b831ee4594b81a6772585d15bcd8b5a87c2749bdfba2137e7f08cbc5c03bfebfaf6bdf4797b5c21c1da4a110ac556af7885fffa
- SSDEEP
  
  768:DqPJtsA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EfKYfdhNh2:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYW
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence