d200ad1c40831c41e14e2b37695b92ae89089328f870304c27d2bc7cf66be67f | Triage

Sharing

General

Target

d200ad1c40831c41e14e2b37695b92ae89089328f870304c27d2bc7cf66be67fN
Size

42KB
Sample

240919-gxc31svcnm
MD5

c21cf9ae56de57b106e17c2626a6f770
SHA1

1d3e2760f3254f6663d7771a8f2942cfeff9a65c
SHA256

d200ad1c40831c41e14e2b37695b92ae89089328f870304c27d2bc7cf66be67f
SHA512

bcf646da01ff34e828d563e1b97585dbaad933136cf9b728b8bd18a1befab23336e3c875aa4abc2f68219515b945c0e400a27dbe03f1373fac12793e85e0b503
SSDEEP

768:DqPJtsA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EfKYfdhNhD:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYj

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  d200ad1c40831c41e14e2b37695b92ae89089328f870304c27d2bc7cf66be67fN
- Size
  
  42KB
- MD5
  
  c21cf9ae56de57b106e17c2626a6f770
- SHA1
  
  1d3e2760f3254f6663d7771a8f2942cfeff9a65c
- SHA256
  
  d200ad1c40831c41e14e2b37695b92ae89089328f870304c27d2bc7cf66be67f
- SHA512
  
  bcf646da01ff34e828d563e1b97585dbaad933136cf9b728b8bd18a1befab23336e3c875aa4abc2f68219515b945c0e400a27dbe03f1373fac12793e85e0b503
- SSDEEP
  
  768:DqPJtsA6C1VqahohtgVRNToV7TtRu8rM0wYVFl2g5coW58dO0xXHV2EfKYfdhNhD:DqMA6C1VqaqhtgVRNToV7TtRu8rM0wYj
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence