b5420d6b385ba9e9aa7bfb0c8b91ec7be56c620a5f8f8f336ecb361319a7b264 | Triage

Sharing

General

Target

14d5ba4a713d36173778155b916a2020N
Size

41KB
Sample

240914-abpflawekl
MD5

14d5ba4a713d36173778155b916a2020
SHA1

cb263f2ddef5aabfd987e71301ca0115834c35a0
SHA256

b5420d6b385ba9e9aa7bfb0c8b91ec7be56c620a5f8f8f336ecb361319a7b264
SHA512

ab858a1dfc3aef9d10a843c1694c17e4a9c009a3167fd07808dbdfc4e8a64620337cbeddd0f6b76d3bbcf87ac3fe30475bcd210d14f898f6ece5012f50604c00
SSDEEP

768:ePyFZFASe0Ep0EpHZplRpqpd6rqxn4p6vghzwYu7vih9GueIh9j2IoHAcBHUIFve:e6q10k0EFjed6rqJ+6vghzwYu7vih9GY

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  14d5ba4a713d36173778155b916a2020N
- Size
  
  41KB
- MD5
  
  14d5ba4a713d36173778155b916a2020
- SHA1
  
  cb263f2ddef5aabfd987e71301ca0115834c35a0
- SHA256
  
  b5420d6b385ba9e9aa7bfb0c8b91ec7be56c620a5f8f8f336ecb361319a7b264
- SHA512
  
  ab858a1dfc3aef9d10a843c1694c17e4a9c009a3167fd07808dbdfc4e8a64620337cbeddd0f6b76d3bbcf87ac3fe30475bcd210d14f898f6ece5012f50604c00
- SSDEEP
  
  768:ePyFZFASe0Ep0EpHZplRpqpd6rqxn4p6vghzwYu7vih9GueIh9j2IoHAcBHUIFve:e6q10k0EFjed6rqJ+6vghzwYu7vih9GY
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence