fe690e1830a92c100ac4941c8dd0bc8fba79f042b023e0b42a5b5da323458b81 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ae1634f9068d0c98def7c2bf8283e8f0N
Size

66KB
Sample

240914-tawyts1hpq
MD5

ae1634f9068d0c98def7c2bf8283e8f0
SHA1

4901c8f7cc82368f5626a103fa2789c451758aae
SHA256

fe690e1830a92c100ac4941c8dd0bc8fba79f042b023e0b42a5b5da323458b81
SHA512

dad12a012cb0d17eb80d10c542fdc5042af0b9860150663f3adc163ab4167dc7aed0260deca2a6299a8a4dfce1ee3b3af1e582836e2e0d88e7d7c7d6c70f1334
SSDEEP

1536:lAo0ej2d6rnJwwvlKlIUBP6vghzwYu7vih9GueIh9j2IoHAcBHUIF2kvEHrH1hyx:lAo1lOwvlKlXBP6vghzwYu7vih9GueII

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  ae1634f9068d0c98def7c2bf8283e8f0N
- Size
  
  66KB
- MD5
  
  ae1634f9068d0c98def7c2bf8283e8f0
- SHA1
  
  4901c8f7cc82368f5626a103fa2789c451758aae
- SHA256
  
  fe690e1830a92c100ac4941c8dd0bc8fba79f042b023e0b42a5b5da323458b81
- SHA512
  
  dad12a012cb0d17eb80d10c542fdc5042af0b9860150663f3adc163ab4167dc7aed0260deca2a6299a8a4dfce1ee3b3af1e582836e2e0d88e7d7c7d6c70f1334
- SSDEEP
  
  1536:lAo0ej2d6rnJwwvlKlIUBP6vghzwYu7vih9GueIh9j2IoHAcBHUIF2kvEHrH1hyx:lAo1lOwvlKlXBP6vghzwYu7vih9GueII
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence