f7c93d4a3c48bb3407679645a45d3337a4afcf07e549a02ba6742398faa544ed | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e4cb3d994b809894bd563e5c5ab8d800N
Size

53KB
Sample

240912-ja5wmayalk
MD5

e4cb3d994b809894bd563e5c5ab8d800
SHA1

fbf06fe2e47bc593cf1d1797101501ea5e5643fc
SHA256

f7c93d4a3c48bb3407679645a45d3337a4afcf07e549a02ba6742398faa544ed
SHA512

9408fc007526dc4b35ea709113d4e3be04698692af4fee732b069f60d43cea591ddee37a81581d492b99bac117e788184387420f05c1aecea34098d15ce0152e
SSDEEP

1536:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYVFl2g5u58dO0xXHQEyYfdhNhFO5h3xhI/:+MA6C1VqaqhtgVRNToV7TtRu8rM0wYVJ

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  e4cb3d994b809894bd563e5c5ab8d800N
- Size
  
  53KB
- MD5
  
  e4cb3d994b809894bd563e5c5ab8d800
- SHA1
  
  fbf06fe2e47bc593cf1d1797101501ea5e5643fc
- SHA256
  
  f7c93d4a3c48bb3407679645a45d3337a4afcf07e549a02ba6742398faa544ed
- SHA512
  
  9408fc007526dc4b35ea709113d4e3be04698692af4fee732b069f60d43cea591ddee37a81581d492b99bac117e788184387420f05c1aecea34098d15ce0152e
- SSDEEP
  
  1536:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYVFl2g5u58dO0xXHQEyYfdhNhFO5h3xhI/:+MA6C1VqaqhtgVRNToV7TtRu8rM0wYVJ
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence