e20dc63ff078684207d5d1587b7a988b17b70fac1b5c1aa2e3b7d2d4b9b30c59 | Triage

Sharing

General

Target

e20dc63ff078684207d5d1587b7a988b17b70fac1b5c1aa2e3b7d2d4b9b30c59
Size

51KB
Sample

240919-dazfysxbmd
MD5

564f2a5a756e83980c30d56cdc8b2ffa
SHA1

4a86b187f9782825a596bb773f444ddf60cd66e0
SHA256

e20dc63ff078684207d5d1587b7a988b17b70fac1b5c1aa2e3b7d2d4b9b30c59
SHA512

fc1e09a1234669d255a96fbff94126b883a9a6f5d4fbde623020a66150b9c4cf641d32bd06ad7fa6d9ef0d64d256e15b1c35b01f966e72707b11c6be73b9a2a5
SSDEEP

1536:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYVFl2g5u58dO0xXHQEyYfdhNhFO5h3xhIy:+MA6C1VqaqhtgVRNToV7TtRu8rM0wYV8

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  e20dc63ff078684207d5d1587b7a988b17b70fac1b5c1aa2e3b7d2d4b9b30c59
- Size
  
  51KB
- MD5
  
  564f2a5a756e83980c30d56cdc8b2ffa
- SHA1
  
  4a86b187f9782825a596bb773f444ddf60cd66e0
- SHA256
  
  e20dc63ff078684207d5d1587b7a988b17b70fac1b5c1aa2e3b7d2d4b9b30c59
- SHA512
  
  fc1e09a1234669d255a96fbff94126b883a9a6f5d4fbde623020a66150b9c4cf641d32bd06ad7fa6d9ef0d64d256e15b1c35b01f966e72707b11c6be73b9a2a5
- SSDEEP
  
  1536:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYVFl2g5u58dO0xXHQEyYfdhNhFO5h3xhIy:+MA6C1VqaqhtgVRNToV7TtRu8rM0wYV8
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence