130c79218d50c3d57f855a801b8c7b73ae59ab515998f312f624563c66e35753 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

130c79218d50c3d57f855a801b8c7b73ae59ab515998f312f624563c66e35753N
Size

63KB
Sample

240918-yaa4kszapb
MD5

dca15c1ad84bf490bf93814a5c2ac900
SHA1

7493edfaccd6563d604d67be3b3d0dbb926c1530
SHA256

130c79218d50c3d57f855a801b8c7b73ae59ab515998f312f624563c66e35753
SHA512

90cc52a9ac3d4526c392d88bafa44275a98007ee175725a28ae9966dec42e27a1ee7a2b89f8e78d73ad3e8824c0d2e6e45f35f285cdde5db606d7e65351b9de7
SSDEEP

1536:NAo0Tj2d6rnJwwvl4ulkP6vghzwYu7vih9GueIh9j2IoHAjU+EmkcU+h+hhjhkhQ:NAoglOwvl4ulkP6vghzwYu7vih9GueI0

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  130c79218d50c3d57f855a801b8c7b73ae59ab515998f312f624563c66e35753N
- Size
  
  63KB
- MD5
  
  dca15c1ad84bf490bf93814a5c2ac900
- SHA1
  
  7493edfaccd6563d604d67be3b3d0dbb926c1530
- SHA256
  
  130c79218d50c3d57f855a801b8c7b73ae59ab515998f312f624563c66e35753
- SHA512
  
  90cc52a9ac3d4526c392d88bafa44275a98007ee175725a28ae9966dec42e27a1ee7a2b89f8e78d73ad3e8824c0d2e6e45f35f285cdde5db606d7e65351b9de7
- SSDEEP
  
  1536:NAo0Tj2d6rnJwwvl4ulkP6vghzwYu7vih9GueIh9j2IoHAjU+EmkcU+h+hhjhkhQ:NAoglOwvl4ulkP6vghzwYu7vih9GueI0
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence