960d896a283d389f5929963501d69ecff6e3531aa2f9b2a11e7640551075b61a | Triage

Sharing

General

Target

960d896a283d389f5929963501d69ecff6e3531aa2f9b2a11e7640551075b61aN
Size

38KB
Sample

240919-hsksqswdpe
MD5

4918eb9b116e1aac39d3b23afc82af50
SHA1

2ecad2ef435fe7aa97c12538dc259ee6eab7f479
SHA256

960d896a283d389f5929963501d69ecff6e3531aa2f9b2a11e7640551075b61a
SHA512

539e5633310f16d9c12239fdf7dde62040f6472c46dc77bd892c7d0bfaf3ab3491f9b715d01f5ff8009ee42c972b5bd4e22c393180b21738ccca7da8ab2ca2ab
SSDEEP

768:ePyFZFASe0Ep0EpHZplRpqpd6rqxn4p6v8tvGE9UHrSdghj8bvHRIkhbUIchUh81:e6q10k0EFjed6rqJ+6v8tvGE9UHrSdgz

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  960d896a283d389f5929963501d69ecff6e3531aa2f9b2a11e7640551075b61aN
- Size
  
  38KB
- MD5
  
  4918eb9b116e1aac39d3b23afc82af50
- SHA1
  
  2ecad2ef435fe7aa97c12538dc259ee6eab7f479
- SHA256
  
  960d896a283d389f5929963501d69ecff6e3531aa2f9b2a11e7640551075b61a
- SHA512
  
  539e5633310f16d9c12239fdf7dde62040f6472c46dc77bd892c7d0bfaf3ab3491f9b715d01f5ff8009ee42c972b5bd4e22c393180b21738ccca7da8ab2ca2ab
- SSDEEP
  
  768:ePyFZFASe0Ep0EpHZplRpqpd6rqxn4p6v8tvGE9UHrSdghj8bvHRIkhbUIchUh81:e6q10k0EFjed6rqJ+6v8tvGE9UHrSdgz
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence