c5a86ba9def40fe4f313fa19c1db24d053cad1834f62d804cb83dd904e97ef64 | Triage

Sharing

General

Target

c5a86ba9def40fe4f313fa19c1db24d053cad1834f62d804cb83dd904e97ef64N
Size

60KB
Sample

240919-httf9swgkm
MD5

be21c669edc51f80375725f29c426df0
SHA1

d73329c6068088ec2291a3bdeee905bec910e9b4
SHA256

c5a86ba9def40fe4f313fa19c1db24d053cad1834f62d804cb83dd904e97ef64
SHA512

770775ccdca40b58474b51928da82eef450b65e879a12370b24fd614d455644c615f6e4237491496b381a7e798fdeac38688f068579eb2d61dfa901bc041b138
SSDEEP

192:vbOzawOs81elJHsc45CcRZOgtShcWaOT2QLrCqwPjlY04/CFxyNhoy5t:vbLwOs8AHsc4sMfwhKQLroLX4/CFsrd

Score

8^/10

discovery persistence

Malware Config

Targets

- Target
  
  c5a86ba9def40fe4f313fa19c1db24d053cad1834f62d804cb83dd904e97ef64N
- Size
  
  60KB
- MD5
  
  be21c669edc51f80375725f29c426df0
- SHA1
  
  d73329c6068088ec2291a3bdeee905bec910e9b4
- SHA256
  
  c5a86ba9def40fe4f313fa19c1db24d053cad1834f62d804cb83dd904e97ef64
- SHA512
  
  770775ccdca40b58474b51928da82eef450b65e879a12370b24fd614d455644c615f6e4237491496b381a7e798fdeac38688f068579eb2d61dfa901bc041b138
- SSDEEP
  
  192:vbOzawOs81elJHsc45CcRZOgtShcWaOT2QLrCqwPjlY04/CFxyNhoy5t:vbLwOs8AHsc4sMfwhKQLroLX4/CFsrd
Score

8^/10

discovery persistence
- Boot or Logon Autostart Execution: Active Setup
  Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
  persistence
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Active Setup

Privilege Escalation

Boot or Logon Autostart Execution

Active Setup

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence