5d6ed59a8993f62328041e500248deafb14d87a95ea75122db1469a7ba11c584 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5d6ed59a8993f62328041e500248deafb14d87a95ea75122db1469a7ba11c584N
Size

42KB
Sample

240918-yg89ys1akn
MD5

85711a8f44f669f2caf8c561110ac9b0
SHA1

7d96565aababf6afd40da1c6010169f429760f1b
SHA256

5d6ed59a8993f62328041e500248deafb14d87a95ea75122db1469a7ba11c584
SHA512

230544d3151621294e6b3b0b3ada1199e2876afe4d26749ae65387056072e41b9760f25b3a332811a801ea4b08fd63c4fda3de28fea1de5c8b22b21be6a3eaf1
SSDEEP

768:DqPJtsA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EfKYfdhNh7:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYb

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  5d6ed59a8993f62328041e500248deafb14d87a95ea75122db1469a7ba11c584N
- Size
  
  42KB
- MD5
  
  85711a8f44f669f2caf8c561110ac9b0
- SHA1
  
  7d96565aababf6afd40da1c6010169f429760f1b
- SHA256
  
  5d6ed59a8993f62328041e500248deafb14d87a95ea75122db1469a7ba11c584
- SHA512
  
  230544d3151621294e6b3b0b3ada1199e2876afe4d26749ae65387056072e41b9760f25b3a332811a801ea4b08fd63c4fda3de28fea1de5c8b22b21be6a3eaf1
- SSDEEP
  
  768:DqPJtsA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EfKYfdhNh7:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYb
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence