fd475c565e9980ea04ed613ef8093787fd2c67ec09d8e0b5e09d06f4f032520a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d9606361cf14af561ce2e1981cc19410N
Size

39KB
Sample

240914-yz6lsatfnb
MD5

d9606361cf14af561ce2e1981cc19410
SHA1

5e3057945fa2f77d39e1c3fd7777f01f40a1cdb3
SHA256

fd475c565e9980ea04ed613ef8093787fd2c67ec09d8e0b5e09d06f4f032520a
SHA512

c1139711184bea8017091aaba372eaa774b0f0e45aface40f912ffc1df4c314f9aa50f69f4532a14908b7f8479bda2c04a7f9125553fdacdc4f3a95ad34bf1e3
SSDEEP

768:ePyFZFASe0Ep0EpHZplRpqpd6rqxn4p6vghzwYu7vih9GueIh9j2IoHAjU+Eh6IV:e6q10k0EFjed6rqJ+6vghzwYu7vih9Gh

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  d9606361cf14af561ce2e1981cc19410N
- Size
  
  39KB
- MD5
  
  d9606361cf14af561ce2e1981cc19410
- SHA1
  
  5e3057945fa2f77d39e1c3fd7777f01f40a1cdb3
- SHA256
  
  fd475c565e9980ea04ed613ef8093787fd2c67ec09d8e0b5e09d06f4f032520a
- SHA512
  
  c1139711184bea8017091aaba372eaa774b0f0e45aface40f912ffc1df4c314f9aa50f69f4532a14908b7f8479bda2c04a7f9125553fdacdc4f3a95ad34bf1e3
- SSDEEP
  
  768:ePyFZFASe0Ep0EpHZplRpqpd6rqxn4p6vghzwYu7vih9GueIh9j2IoHAjU+Eh6IV:e6q10k0EFjed6rqJ+6vghzwYu7vih9Gh
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence